Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2005-0053

Published: 02/05/2005 Updated: 23/07/2021
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Microsoft

Vulnerability Summary

Internet Explorer 5.01, 5.5, and 6 allows remote malicious users to execute arbitrary code via drag and drop events, aka the "Drag-and-Drop Vulnerability."

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft internet explorer 5.0.1

microsoft internet explorer 5.5

microsoft internet explorer 6.0

microsoft ie 6.0

microsoft windows 2000

microsoft windows 2003 server standard

microsoft windows 2003 server web

microsoft windows xp

microsoft windows 2003 server enterprise

microsoft windows 2003 server enterprise_64-bit

microsoft windows me

microsoft windows 98

microsoft windows 98se

microsoft windows 2003 server r2

Exploits

Exploit DB: Microsoft Internet Explorer 5.x - Valid File Drag and Drop Embedded Code (MS04-038)
source: wwwsecurityfocuscom/bid/11466/info The Microsoft cumulative Internet Explorer patch (MS04-038) attempted to limit what files may be dragged and dropped onto the local computer from the Internet Zone to prevent executable objects from being placed on the file system in this manner However, a number of file types are still permit ...

References

NVD-CWE-Otherhttp://www.us-cert.gov/cas/techalerts/TA05-039A.htmlhttp://www.kb.cert.org/vuls/id/698835http://www.securityfocus.com/bid/11466https://exchange.xforce.ibmcloud.com/vulnerabilities/19117https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4864https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4726https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3006https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2953https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2046https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1334https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1015https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-014https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-008https://nvd.nist.govhttps://www.exploit-db.com/exploits/24693/https://www.kb.cert.org/vuls/id/698835
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925CVE-2023-41826LFICVE-2022-22364CVE-2024-2887command injectionremote code executionCVE-2024-34446CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook