CVE Vulnerabilities

CVE-2001-0091

Published: Feb 16, 2001 | Modified: Jul 23, 2021
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.6 LOW
AV:N/AC:H/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

The ActiveX control for invoking a scriptlet in Internet Explorer 5.0 through 5.5 renders arbitrary file types instead of HTML, which allows an attacker to read arbitrary files, aka a variant of the Scriptlet Rendering vulnerability.

Affected Software

Name Vendor Start Version End Version
Internet_explorer Microsoft 4.0 4.0
Internet_explorer Microsoft 5.0 5.0
Internet_explorer Microsoft 5.01 5.01
Internet_explorer Microsoft 5.5 5.5

References