Vulnerability Name:

CVE-2004-1331 (CCN-18181)

Assigned:2004-11-16
Published:2004-11-16
Updated:2021-07-23
Summary:The execCommand method in Microsoft Internet Explorer 6.0 SP2 allows remote attackers to bypass the "File Download - Security Warning" dialog and save arbitrary files with arbitrary extensions via the SaveAs command.
CVSS v3 Severity:3.7 Low (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:2.6 Low (CVSS v2 Vector: AV:N/AC:H/Au:N/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): High
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
2.6 Low (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): High
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Access
References:Source: BUGTRAQ
Type: Vendor Advisory
20041119 Microsoft Internet Explorer 6 SP2 Vulnerabilities / Full disclosure Vs. Security by Obscurity...

Source: CCN
Type: BugTraq Mailing List, Fri Nov 19 2004 - 23:50:23 CST
Microsoft Internet Explorer 6 SP2 Vulnerabilities / Full disclosure Vs. Security by Obscurity...

Source: MITRE
Type: CNA
CVE-2004-1331

Source: CCN
Type: SA13203
Microsoft Internet Explorer Two Vulnerabilities

Source: SECUNIA
Type: Vendor Advisory
13203

Source: SREASON
Type: UNKNOWN
3220

Source: MISC
Type: Vendor Advisory
http://www.frsirt.com/exploits/20041119.IESP2Unpatched.php

Source: CCN
Type: US-CERT VU#743974
Microsoft Internet Explorer execCommand() method SaveAs command uses misleading Save HTML Document dialog

Source: CERT-VN
Type: Third Party Advisory, US Government Resource
VU#743974

Source: CCN
Type: OSVDB ID: 11917
Microsoft Windows XP SP2 Spoofed Content-Location Warning Bypass

Source: CCN
Type: OSVDB ID: 11918
Microsoft IE execCommand() File Extension Spoofing

Source: CCN
Type: OSVDB ID: 58788
Microsoft IE Crafted File Extension Download Security Warning Bypass

Source: BID
Type: Exploit, Vendor Advisory
11686

Source: CCN
Type: BID-11686
Microsoft Internet Explorer File Download Security Warning Bypass Vulnerability

Source: XF
Type: UNKNOWN
ie-execommand-warning-bypass(18181)

Source: XF
Type: UNKNOWN
ie-execommand-warning-bypass(18181)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:microsoft:ie:6.0:sp2:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:ie:6.0:sp1:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*
  • AND
  • cpe:/o:microsoft:windows:xp:sp2:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    microsoft ie 6.0 sp2
    microsoft internet explorer 6.0
    microsoft ie 6.0 sp1
    microsoft ie 6.0
    microsoft windows xp sp2