Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The showHelp function in Internet Explorer 6 on Windows XP Pro allows remote attackers to execute arbitrary local .CHM files via a double backward slash ("\\") before the target CHM file, as demonstrated using an "ms-its" URL to ntshared.chm. NOTE: this bug may overlap CVE-2003-1041.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Internet Explorer双反斜线CHM文件执行漏洞
Vulnerability Description
Microsoft Internet Explorer是一款流行的WEB浏览器。 Microsoft Internet Explorer存在问题,远程攻击者可以利用这个漏洞未授权执行本地存储的CHM文件。 虽然之前的IE补丁已经修补了Showhelp执行CHM文件,但是由于协议处理器不正确处理"\",当"\\"放置在目标CHM文件名之前时, 就会在HELP文件夹中搜索此名,如果HELP文件夹不包含此文件,就会转向ROOT目录中搜索,如果文件被搜索到就会被执行。不过此执行需要本地电脑域执行,攻击者需要利用其
CVSS Information
N/A
Vulnerability Type
N/A