CVE-2002-0023 | Vulnerability Database | Aqua Security

Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to read arbitrary files via malformed requests to the GetObject function, which bypass some of GetObjects security checks.

Affected Software

Name	Vendor	Start Version	End Version
Internet_explorer	Microsoft	5.01 (including)	5.01 (including)
Internet_explorer	Microsoft	5.5 (including)	5.5 (including)
Internet_explorer	Microsoft	6.0 (including)	6.0 (including)

References

http://archives.neohapsis.com/archives/bugtraq/2002-01/0000.html
http://www.osvdb.org/3030
http://www.securityfocus.com/bid/3767
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-005
https://exchange.xforce.ibmcloud.com/vulnerabilities/7758
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A40
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A50
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A77

NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-0023
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html