CVE-2002-1188
First published: Wed Dec 11 2002(Updated: )
Internet Explorer 5.01 through 6.0 allows remote attackers to identify the path to the Temporary Internet Files folder and obtain user information such as cookies via certain uses of the OBJECT tag, which are not subjected to the proper security checks, aka "Temporary Internet Files folders Name Reading."
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Internet Explorer | =5.5-sp2 | |
| Internet Explorer | =5.0.1 | |
| Internet Explorer | =5.0.1-sp2 | |
| Internet Explorer | =5.0.1-sp1 | |
| Internet Explorer | =5.5 | |
| Internet Explorer | =5.5-sp1 | |
| Internet Explorer | =6.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.iss.net/security_center/static/10665.php
- http://www.ciac.org/ciac/bulletins/n-018.shtml
- http://www.securityfocus.com/bid/6217
- http://marc.info/?l=bugtraq&m=103184415307193&w=2
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A690
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A444
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-066
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/references
- agent/severity
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/microsoft
- canonical/internet explorer
- version/internet explorer/5.5-sp2
- version/internet explorer/5.0.1
- version/internet explorer/5.0.1-sp2
- version/internet explorer/5.0.1-sp1
- version/internet explorer/5.5
- version/internet explorer/5.5-sp1
- version/internet explorer/6.0