Windows Scripting Host in Internet Explorer 5.5 and previous versions allows remote malicious users to read arbitrary files via the GetObject Javascript function and the htmlfile ActiveX object.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft internet explorer |