CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-1376

Directory traversal vulnerability in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote malicious FTP servers to overwrite arbitrary files via .. (dot dot) sequences in filenames returned from a LIST command.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.129

EPSS Ranking 93.7%

CVSS Severity

CVSS v2 Score 5.0

References

http://marc.info/?l=bugtraq&m=110461358930103&w=2
http://secunia.com/advisories/13704
http://www.7a69ezine.org/node/view/176
http://marc.info/?l=bugtraq&m=110461358930103&w=2
http://secunia.com/advisories/13704
http://www.7a69ezine.org/node/view/176

Products affected by CVE-2004-1376

Microsoft » Internet Explorer » Version: 5.01

cpe:2.3:a:microsoft:internet_explorer:5.01
Microsoft » Internet Explorer » Version: 5.5

cpe:2.3:a:microsoft:internet_explorer:5.5
Microsoft » Internet Explorer » Version: 6.0

cpe:2.3:a:microsoft:internet_explorer:6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-1376

Products

Pricing

Contact Us