What is CVE-2003-1041?

CVE-2003-1041 is a vulnerability in N/a. Published 2004-05-20.

Is CVE-2003-1041 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2003-1041

Internet Explorer 5.x and 6.0 allows remote attackers to execute arbitrary programs via a modified directory traversal attack using a URL containing ".." (dot dot) sequences and a filename that ends in "::" which is treated as a .chm file…

EPSS: 0.654 (98.5th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

TA04-196A (x_refsource_CERT, third-party-advisory)
oval:org.mitre.oval:def:1186 (signature, x_refsource_OVAL, vdb-entry)
9320 (vdb-entry, x_refsource_BID)
MS04-023 (x_refsource_MS, vendor-advisory)
oval:org.mitre.oval:def:1943 (signature, x_refsource_OVAL, vdb-entry)
VU#187196 (x_refsource_CERT-VN, third-party-advisory)
oval:org.mitre.oval:def:956 (signature, x_refsource_OVAL, vdb-entry)
oval:org.mitre.oval:def:3514 (signature, x_refsource_OVAL, vdb-entry)
ie-showhelp-directory-traversal(14105) (vdb-entry, x_refsource_XF)
20031230 IE 5.x-6.0 allows executing arbitrary programs using showHelp() (mailing-list, x_refsource_BUGTRAQ)

Frequently asked questions

What is CVE-2003-1041?: CVE-2003-1041 is a vulnerability in N/a. Published 2004-05-20.
Is CVE-2003-1041 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.