Vulnerability Description
Internet Explorer 5.5 and 6.0 allows remote attackers to cause the File Download dialogue box to misrepresent the name of the file in the dialogue in a way that could fool users into thinking that the file type is safe to download.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Internet Explorer | 5.5 |
References
- http://www.securityfocus.com/archive/1/245594PatchVendor Advisory
- http://www.securityfocus.com/bid/3597ExploitPatchVendor Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-05
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7636
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://www.securityfocus.com/archive/1/245594PatchVendor Advisory
- http://www.securityfocus.com/bid/3597ExploitPatchVendor Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-05
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7636
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
FAQ
What is CVE-2001-0875?
CVE-2001-0875 is a vulnerability with a CVSS score of 7.5 (HIGH). Internet Explorer 5.5 and 6.0 allows remote attackers to cause the File Download dialogue box to misrepresent the name of the file in the dialogue in a way that could fool users into thinking that the...
How severe is CVE-2001-0875?
CVE-2001-0875 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-0875?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Internet Explorer.