CVE-2002-0647

Buffer overflow in a legacy ActiveX control used to display specially formatted text in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to execute arbitrary code, aka "Buffer Overrun in Legacy Text Formatting ActiveX Control".

Published: Sep 24, 2002
Updated: Apr 13, 2023
CVE: CVE-2002-0647
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / internet_explorer	5.01	5.01.x
microsoft / internet_explorer	5.5-sp2	5.5-sp2.x
microsoft / internet_explorer	5.5	5.5.x
microsoft / internet_explorer	5.01-sp1	5.01-sp1.x
microsoft / internet_explorer	5.01-sp2	5.01-sp2.x
microsoft / internet_explorer	5.5-sp1	5.5-sp1.x
microsoft / internet_explorer	6.0	6.0.x

http://www.iss.net/security_center/static/9935.php
http://www.securityfocus.com/bid/5558
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-047

Vulnerability Database

289,871

CVE-2002-0647