Vulnerability Description
Internet Explorer 5.5 and 6 with the Q312461 (MS01-055) patch modifies the HTTP_USER_AGENT (UserAgent) information that indicates that the patch has been installed, which could allow remote malicious web sites to more easily identify and exploit vulnerable clients.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Internet Explorer | 5.5 |
References
- http://marc.info/?l=bugtraq&m=100619268115798&w=2
- http://www.iss.net/security_center/static/7581.php
- http://www.securityfocus.com/bid/3556
- http://marc.info/?l=bugtraq&m=100619268115798&w=2
- http://www.iss.net/security_center/static/7581.php
- http://www.securityfocus.com/bid/3556
FAQ
What is CVE-2001-0904?
CVE-2001-0904 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Internet Explorer 5.5 and 6 with the Q312461 (MS01-055) patch modifies the HTTP_USER_AGENT (UserAgent) information that indicates that the patch has been installed, which could allow remote malicious ...
How severe is CVE-2001-0904?
CVE-2001-0904 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-0904?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Internet Explorer.