CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0024

File Download box in Internet Explorer 5.01, 5.5 and 6.0 allows an attacker to use the Content-Disposition and Content-Type HTML header fields to modify how the name of the file is displayed, which could trick a user into believing that a file is safe to download.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.045

EPSS Ranking 88.6%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/4087
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-005
http://www.securityfocus.com/bid/4087
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-005

Products affected by CVE-2002-0024

Microsoft » Internet Explorer » Version: 5.01

cpe:2.3:a:microsoft:internet_explorer:5.01
Microsoft » Internet Explorer » Version: 5.5

cpe:2.3:a:microsoft:internet_explorer:5.5
Microsoft » Internet Explorer » Version: 6.0

cpe:2.3:a:microsoft:internet_explorer:6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0024

Products

Pricing

Contact Us