Executive Summary

Informations
Name	MS00-093	First vendor Publication	N/A
Vendor	Microsoft	Last vendor Modification	N/A
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:H/Au:N/C:P/I:P/A:P)
Cvss Base Score	5.1	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	High
Cvss Expoit Score	4.9	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Browser Print Template and File Upload via Form Vulnerabilities

CPE : Common Platform Enumeration

Type	Description	Count
Application	Microsoft Internet Explorer cpe:2.3:a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.5:preview:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.5:-:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.5:sp2:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.5:sp1:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.2.3:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.1:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.01:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.01:sp1:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.01:sp2:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.01:sp3:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.01:sp4:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.00.3700.1000:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.00.3502.1000:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.00.3315.1000:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.00.3314.2101:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.00.3105.0106:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.00.3103.1000:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.00.2920.0000:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.00.2919.800:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.00.2919.6307:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.00.2919.3800:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.00.2614.3500:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.00.2516.1900:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.00.2314.1003:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.00.2014.0216:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.00.0910.1309:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.00.0518.10:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.0.1:-:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp1:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp2:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.0.1:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp4:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp3:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5.0:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:5:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.72.3612.1713:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.72.3110.8:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.72.2106.8:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.71.544:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.71.1712.6:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.71.1008.3:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.70.1300:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.70.1215:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.70.1158:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.70.1155:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.5:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.40.520:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.40.308:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.1:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.01:sp1:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.01:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.0.1:sp1:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.0.1:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.0.1:sp2:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:4.0:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:3.2:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:3.1:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:3.0.2:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:3.0.1:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:3.0:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:*:*:*:*:*:*:*:* cpe:2.3:a:microsoft:internet_explorer:-:*:*:*:*:*:*:*	63

Open Source Vulnerability Database (OSVDB)

Id	Description
7822	Microsoft IE HTML Form Input Element Arbitrary File Access
7821	Microsoft IE Print Templates Feature Arbitrary ActiveX Execution
7820	Microsoft IE Scriptlet Invoking ActiveX Arbitrary File Access Microsoft Internet Explorer contains a flaw that may lead to an unauthorized information disclosure. The ActiveX control used for invoking scriptlets can be used to render arbitrary file types instead of strictly HTML files, which could allow a malicious web site operator to create a script that would access arbitrary files on the victim's system resulting in a loss of confidentiality.
7817	Microsoft IE Frame Domain Validation Arbitrary File Access Microsoft Internet Explorer contains a flaw that may lead to an unauthorized information disclosure. The problem is due to improper enforcement of frames separation in the same window residing in different domains, which could allow a malicious Web site operator to open a frame in his own domain and a frame that refers to the visiting victim's file system. It is possible to view arbitrary files on a visiting victim's computer if the remote attacker knows or can guess the name and location of the file and if the file can be displayed in a Web browser window resulting in a loss of confidentiality.