Published: 29/05/2002 Updated: 23/07/2021

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Microsoft Internet Explorer 5.01 and 6.0 allow remote malicious users to execute arbitrary code via malformed Content-Disposition and Content-Type header fields that cause the application for the spoofed file type to pass the file back to the operating system for handling rather than raise an error message, aka the first variant of the "Content Disposition" vulnerability.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft internet explorer 6.0
microsoft internet explorer 5.0.1

source: wwwsecurityfocuscom/bid/4752/info An issue exists in the way Microsoft Internet Explorer handles conflicting information in some HTTP headers used to describe non-HTML content A malicious web server may provide content with misleading values in the content-type and content-disposition headers Under some circumstances, the resul ...

NVD-CWE-Other http://www.securityfocus.com/bid/4752 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A99 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A27 https://exchange.xforce.ibmcloud.com/vulnerabilities/9085 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-023 https://nvd.nist.gov https://www.exploit-db.com/exploits/21452/https://www.kb.cert.org/vuls/id/916795

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-0193

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect