Internet Explorer 5.0 up to and including 6.0 allows remote malicious users to determine the existence of files on the client via an IMG tag with a dynsrc property that references the target file, which sets certain elements of the image object such as file size.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft internet explorer 5.0.1 |
||
microsoft internet explorer 5.5 |
||
microsoft internet explorer 5.0 |
||
microsoft internet explorer 6.0 |