CVE-2001-0154

Published: May 3, 2001Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

HTML e-mail feature in Internet Explorer 5.5 and earlier allows attackers to execute attachments by setting an unusual MIME type for the attachment, which Internet Explorer does not process correctly.

Affected (2)

Products: Microsoft: Internet Explorer

Microsoft

1 product

Internet Explorer

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Microsoft Internet Explorer	Up to 5.5
Microsoft Internet Explorer	Version 5.01

References (18)

http://marc.info/?l=bugtraq&m=98596775905044&w=2

Source: cve@mitre.org

http://securitytracker.com/id?1001197

Source: cve@mitre.org

http://www.cert.org/advisories/CA-2001-06.html

Source: cve@mitre.org

US Government Resource

http://www.ciac.org/ciac/bulletins/l-066.shtml

Source: cve@mitre.org

http://www.osvdb.org/7806

Source: cve@mitre.org

http://www.securityfocus.com/bid/2524

Source: cve@mitre.org

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-020

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/6306

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A141

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=98596775905044&w=2