Vulnerability Description
Microsoft Internet Explorer 5.01, 5.5 and 6.0 does not properly check parameters that are passed during third party rendering, which could allow remote attackers to execute arbitrary web script, aka the "Third Party Plugin Rendering" vulnerability, a different vulnerability than CVE-2003-0233.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Ie | 6.0 |
| Microsoft | Internet Explorer | 5.0.1 |
References
- http://www.iss.net/security_center/static/11848.phpVendor Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-01
- http://www.iss.net/security_center/static/11848.phpVendor Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-01
FAQ
What is CVE-2003-0115?
CVE-2003-0115 is a vulnerability with a CVSS score of 7.5 (HIGH). Microsoft Internet Explorer 5.01, 5.5 and 6.0 does not properly check parameters that are passed during third party rendering, which could allow remote attackers to execute arbitrary web script, aka t...
How severe is CVE-2003-0115?
CVE-2003-0115 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-0115?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Ie, Microsoft Internet Explorer.