Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2005-0053
HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0053

2005-05-0204:00:00
[email protected]
web.nvd.nist.gov
33
internet explorer
drag-and-drop
vulnerability
cve-2005-0053
remote code execution

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

Low

0.871 High

EPSS

Percentile

98.6%

JSON

Internet Explorer 5.01, 5.5, and 6 allows remote attackers to execute arbitrary code via drag and drop events, aka the “Drag-and-Drop Vulnerability.”

Affected configurations

NVD
Node
microsoftieMatch6.0sp1
OR
microsoftieMatch6.0sp2
OR
microsoftinternet_explorerMatch5.0.1
OR
microsoftinternet_explorerMatch5.0.1sp1
OR
microsoftinternet_explorerMatch5.0.1sp2
OR
microsoftinternet_explorerMatch5.0.1sp3
OR
microsoftinternet_explorerMatch5.0.1sp4
OR
microsoftinternet_explorerMatch5.5
OR
microsoftinternet_explorerMatch5.5sp1
OR
microsoftinternet_explorerMatch5.5sp2
OR
microsoftinternet_explorerMatch6.0
Node
microsoftwindows_2000
OR
microsoftwindows_2000sp1
OR
microsoftwindows_2000sp2
OR
microsoftwindows_2000sp3
OR
microsoftwindows_2000sp4
OR
microsoftwindows_2003_serverMatchenterprise64-bit
OR
microsoftwindows_2003_serverMatchenterprise_64-bit
OR
microsoftwindows_2003_serverMatchr264-bit
OR
microsoftwindows_2003_serverMatchr2datacenter_64-bit
OR
microsoftwindows_2003_serverMatchstandard64-bit
OR
microsoftwindows_2003_serverMatchweb
OR
microsoftwindows_98gold
OR
microsoftwindows_98se
OR
microsoftwindows_me
OR
microsoftwindows_xp64-bit
OR
microsoftwindows_xphome
OR
microsoftwindows_xpmedia_center
OR
microsoftwindows_xpgoldprofessional
OR
microsoftwindows_xpsp164-bit
OR
microsoftwindows_xpsp1home
OR
microsoftwindows_xpsp1media_center
OR
microsoftwindows_xpsp2home
OR
microsoftwindows_xpsp2media_center
OR
microsoftwindows_xpsp2tablet_pc

References

Related

nvd 1
securityvulns 3
cert 1
nessus 1
checkpoint_advisories 1
cvelist 1
nvd
nvd
CVE-2005-0053
2005-05-02 04:00:00
securityvulns
securityvulns
[Full-Disclosure] Secunia Research: Microsoft Internet Explorer Multiple Vulnerabilities
2005-02-11 00:00:00
Microsoft Security Bulletin MS05-008 Vulnerability in Windows Shell Could Allow Remote Code Execution (890047)
2005-02-08 00:00:00
Microsoft Security Bulletin MS05-014 Cumulative Security Update for Internet Explorer (867282)
2005-02-09 00:00:00
cert
cert
Microsoft DHTML Drag-and-Drop events insufficiently validated
2005-02-09 00:00:00
nessus
nessus
MS05-008: Vulnerability in Windows Shell (890047)
2005-02-08 00:00:00
checkpoint_advisories
checkpoint_advisories
Internet Explorer Drag and Drop Code Execution (CVE-2005-0053)
2010-03-11 00:00:00
cvelist
cvelist
CVE-2005-0053
2005-02-08 05:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

Low

0.871 High

EPSS

Percentile

98.6%

JSON
Related for CVE-2005-0053
nvd1securityvulns3cert1nessus1checkpoint_advisories1cvelist1