CVE - CVE-2002-0980

CVE-ID
CVE-2002-0980	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The Web Folder component for Internet Explorer 5.5 and 6.0 writes an error message to a known location in the temporary folder, which allows remote attackers to execute arbitrary code by injecting it into the error message, then referring to the error message file via a mhtml: URL.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:5473 URL:http://www.securityfocus.com/bid/5473 BUGTRAQ:20020815 SILLY BEHAVIOR : Internet Explorer 5.5 - 6.0 URL:http://marc.info/?l=bugtraq&m=102942234427691&w=2 MS:MS03-014 URL:https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-014 NTBUGTRAQ:20020815 SILLY BEHAVIOR : Internet Explorer 5.5 - 6.0 URL:http://marc.info/?l=ntbugtraq&m=102937705527922&w=2 VULN-DEV:20020815 SILLY BEHAVIOR : Internet Explorer 5.5 - 6.0 URL:http://marc.info/?l=vuln-dev&m=102943486811091&w=2 XF:ie-webfolder-script-injection(9881) URL:~~http://www.iss.net/security_center/static/9881.php~~ (Obsolete source - check if archived by the Wayback Machine)
Assigning CNA
MITRE Corporation
Date Record Created
20020821	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Modified (20050609)
Votes (Legacy)
ACCEPT(1) Baker MODIFY(1) Frech NOOP(5) Armstrong, Christey, Cole, Cox, Foat REVIEWING(1) Wall
Comments (Legacy)
Christey> ADDREF MS:MS03-014 URL:http://www.microsoft.com/technet/security/bulletin/ms03-014.asp (it explicitly mentions this CAN). Note: MS03-014 places the blame on Outlook, not IE. Frech> XF:ie-webfolder-script-injection(9881) Christey> MS:MS03-014 URL:http://www.microsoft.com/technet/security/bulletin/ms03-014.asp The following Bugtraq post appears to involve a different attack vector than is currently described: BUGTRAQ:20030225 Self-Executing HTML: Internet Explorer 5.5 and 6.0 Part II URL:http://www.securityfocus.com/archive/1/313174 * FROM THE CVE PERSPECTIVE, THERE IS INSUFFICIENT PUBLIC * INFORMATION TO BE CERTAIN WHETHER THE ABOVE POST IS TRULY * ADDRESSED BY MS:MS03-014 OR NOT. THEREFORE IT IS NOT * CERTAIN WHETHER THE ABOVE REFERENCE SHOULD BE ADDED TO *** THIS ENTRY OR NOT. The exploit from this Bugtraq post is being used in the "W32/Mimail@MM" mail worm of July/August 2003. Also see: http://www.microsoft.com/security/incident/mimail.asp Also see: http://securityresponse.symantec.com/avcenter/venc/data/w32.mimail.a@mm.html
Proposed (Legacy)
20020830
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)