Summary
Incorrect VBScript Handling in IE can Allow Web
Pages to Read Local Files.
Impact of vulnerability: Information Disclosure
Affected Software:
Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0
See
http://www.microsoft.com/technet/security/bulletin/ms02-009.mspx and: Microsoft Article
Q319847 MS02-009 May Cause Incompatibility Problems Between VBScript and Third-Party Applications
Severity
Classification
-
CVE CVE-2002-0052 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Microsoft Window XML Core Services Information Disclosure Vulnerability (2966061)
- Microsoft Report Viewer Information Disclosure Vulnerability (2578230)
- Microsoft Windows Kernel Mode Drivers Privilege Escalation Vulnerabilities (979559)
- Microsoft OneNote Information Disclosure Vulnerability (2816264)
- Microsoft Office Security Feature Bypass Vulnerability (3033857)