Summary
Incorrect VBScript Handling in IE can Allow Web
Pages to Read Local Files.
Impact of vulnerability: Information Disclosure
Affected Software:
Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0
See
http://www.microsoft.com/technet/security/bulletin/ms02-009.mspx and: Microsoft Article
Q319847 MS02-009 May Cause Incompatibility Problems Between VBScript and Third-Party Applications
Severity
Classification
-
CVE CVE-2002-0052 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Flaw in SMB Signing Could Enable Group Policy to be Modified (329170)
- Microsoft Groove Server HTML Sanitisation Component XSS Vulnerability (2821818)
- Microsoft Lync Server Remote Denial of Service Vulnerability (2990928)
- ASP.NET MVC Security Feature Bypass Vulnerability (2990942)
- Microsoft MS00-058 security check