MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to paste a file name into the file upload intrinsic control, a variant of untrusted scripted paste as described in MS:MS98-013.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Windows_nt |
Microsoft |
4.0 |
4.0 |
References