CVE-2001-0665

Sažetak

Internet Explorer 6 and earlier allows remote attackers to cause certain HTTP requests to be automatically executed and appear to come from the user, which could allow attackers to gain privileges or execute operations within web-based services, aka the "HTTP Request Encoding vulnerability."

Reference

http://www.osvdb.org/1972
http://www.securityfocus.com/bid/3421
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-051
https://exchange.xforce.ibmcloud.com/vulnerabilities/7259

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

12-10-2018 - 21:30

Objavljeno

30-10-2001 - 05:00