IE File Execution User-prompt Bypass VulnerabilityID: oval:org.mitre.oval:def:921 | Date: (C)2004-04-29 (M)2021-07-27 |
Class: VULNERABILITY | Family: windows |
Internet Explorer 6.0 allows remote attackers to execute arbitrary code by modifying the Content-Disposition and Content-Type header fields in a way that causes Internet Explorer to believe that the file is safe to open without prompting the user, aka the "File Execution Vulnerability."
Platform: |
Microsoft Windows 98 |
Microsoft Windows ME |
Microsoft Windows NT |
Microsoft Windows 2000 |
Microsoft Windows XP |
Product: |
Microsoft Internet Explorer |