Vulnerability Description
The showHelp function in Internet Explorer 6 on Windows XP Pro allows remote attackers to execute arbitrary local .CHM files via a double backward slash ("\\") before the target CHM file, as demonstrated using an "ms-its" URL to ntshared.chm. NOTE: this bug may overlap CVE-2003-1041.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Ie | 6.0 |
References
- http://www.securityfocus.com/archive/1/363202ExploitVendor Advisory
- http://www.securityfocus.com/bid/10348ExploitVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16147
- http://www.securityfocus.com/archive/1/363202ExploitVendor Advisory
- http://www.securityfocus.com/bid/10348ExploitVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16147
FAQ
What is CVE-2004-0475?
CVE-2004-0475 is a vulnerability with a CVSS score of 5.1 (MEDIUM). The showHelp function in Internet Explorer 6 on Windows XP Pro allows remote attackers to execute arbitrary local .CHM files via a double backward slash ("\\") before the target CHM file, as demonstra...
How severe is CVE-2004-0475?
CVE-2004-0475 has been rated MEDIUM with a CVSS base score of 5.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0475?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Ie.