Detections
Analytics

CVE-2001-0154

high

Description

HTML e-mail feature in Internet Explorer 5.5 and earlier allows attackers to execute attachments by setting an unusual MIME type for the attachment, which Internet Explorer does not process correctly.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A141

https://exchange.xforce.ibmcloud.com/vulnerabilities/6306

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-020

http://www.securityfocus.com/bid/2524

http://www.osvdb.org/7806

http://www.ciac.org/ciac/bulletins/l-066.shtml

http://www.cert.org/advisories/CA-2001-06.html

http://securitytracker.com/id?1001197

http://marc.info/?l=bugtraq&m=98596775905044&w=2

Details

Source: Mitre, NVD

Published: 2001-05-03

Updated: 2025-04-03

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 8.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

Severity: High

EPSS

EPSS: 0.1313