漏洞信息详情
Microsoft Internet Explorer安全漏洞
- CNNVD编号:CNNVD-200106-003 <!--
- 危害等级: 中危-->
- 危害等级: 中危
- CVE编号: CVE-2001-0149
- 漏洞类型: 其他
- 发布时间: 2001-06-02
- 威胁类型: 远程
- 更新时间: 2021-07-27
- 厂 商: microsoft
- 漏洞来源: .');">Posted to Bugtraq ...
-
漏洞简介
Microsoft Internet Explorer(IE)是美国微软(Microsoft)公司的一款Windows操作系统附带的Web浏览器。
Windows Scripting Host in Internet Explorer 5.5及其之前版本存在漏洞。远程攻击者借助GetObject Javascript函数和htmlfile ActiveX 对象读取任意文件。
漏洞公告
Microsoft has released a patch which rectifies this issue:
Microsoft Windows Scripting Host 5.1
Microsoft scriptenWindows 2000
http://www.microsoft.com/scripting/downloads/v51/windows2000/scripten.exe">
http://www.microsoft.com/scripting/downloads/v51/windows2000/scripten.
exe
Microsoft ste51enWindows 95, 98, NT 4.0
http://www.microsoft.com/scripting/downloads/v51/other/ste51en.exe">
http://www.microsoft.com/scripting/downloads/v51/other/ste51en.exe
Microsoft Windows Scripting Host 5.5
Microsoft scr55enWindows 95, 98, NT 4.0
http://www.microsoft.com/scripting/downloads/v55/other/scr55en.exe">
http://www.microsoft.com/scripting/downloads/v55/other/scr55en.exe
Microsoft scripten.exe
http://www.microsoft.com/scripting/downloads/v55/windows2000/scripten.exe">
http://www.microsoft.com/scripting/downloads/v55/windows2000/scripten.
exe
参考网址
来源:MS
链接:https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-015
来源:BUGTRAQ
链接:http://archives.neohapsis.com/archives/bugtraq/2000-09/0305.html
来源:NTBUGTRAQ
链接:http://marc.info/?l=ntbugtraq&m=96999020527583&w=2
来源:BID
链接:https://www.securityfocus.com/bid/1718
来源:XF
链接:https://exchange.xforce.ibmcloud.com/vulnerabilities/5293
受影响实体
- Microsoft Ie:5.5<!--2000-1-1-->
补丁
暂无
还没有评论,来说两句吧...