CVE-2003-1041

Severity

75%

Complexity

99%

Confidentiality

106%

Internet Explorer 5.x and 6.0 allows remote attackers to execute arbitrary programs via a modified directory traversal attack using a URL containing ".." (dot dot) sequences and a filename that ends in "::" which is treated as a .chm file even if it does not have a .chm extension. NOTE: this bug may overlap CVE-2004-0475.

Internet Explorer 5.x and 6.0 allows remote attackers to execute arbitrary programs via a modified directory traversal attack using a URL containing ".." (dot dot) sequences and a filename that ends in "::" which is treated as a .chm file even if it does not have a .chm extension. NOTE: this bug may overlap CVE-2004-0475.

CVSS 2.0 Base Score 7.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P).

Overview

Type

Microsoft

First reported 21 years ago

2004-06-14 04:00:00

Last updated 6 years ago

2018-10-12 21:33:00

Affected Software

Microsoft Internet Explorer 5

5

Microsoft ie 5.5

5.5

Microsoft Internet Explorer 5.5 SP1

5.5

Microsoft Internet Explorer 5.5 SP2

5.5

Microsoft Internet Explorer 6.0

6.0

References

VU#187196

US Government Resource

20031230 IE 5.x-6.0 allows executing arbitrary programs using showHelp()

Exploit, Vendor Advisory

9320

Exploit, Vendor Advisory

TA04-196A

Third Party Advisory, US Government Resource

MS04-023

ie-showhelp-directory-traversal(14105)

oval:org.mitre.oval:def:1186

oval:org.mitre.oval:def:1943

oval:org.mitre.oval:def:3514

oval:org.mitre.oval:def:956

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.