CVE-2001-0643

medium Microsoft
CVSS v3 Base Score
5.0
AV:N/AC:L/Au:N/C:N/I:P/A:N
EPSS Score
17.3%
Exploitation probability in 30 days
Top 5% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Confidentiality
None
Integrity
P
Availability
None
Published: September 20, 2001 (9002 days ago)
Last Modified: April 16, 2026
Vendor: Microsoft
Source: NVD

Description

Internet Explorer 5.5 does not display the Class ID (CLSID) when it is at the end of the file name, which could allow attackers to trick the user into executing dangerous programs by making it appear that the document is of a safe file type.

CWE

NVD-CWE-Other

Affected Products

microsoft internet explorer

References

🔗 vil.nai.com 🔗 www.guninski.com 🔗 www.osvdb.org 🔗 www.sarc.com 🔗 www.securityfocus.com