Home  >  Microsoft+Internet+Explorer+6.0+does+not+properly+handle+Drag+and+Drop+events%2C+which+allows+remote+user-assisted+attackers+to+execute+arbitrary+code+via+a+link+to+an+SMB+file+share+with+a+filename+that+contains+encoded+..%5C+%28%252e%252e%255c%29+sequences+and+whose+extension+contains+the+CLSID+Key+identifier+for+HTML+Applications+%28HTA%29%2C+aka+%22Folder+GUID+Code+Execution+Vulnerability.%22++NOTE%3A+directory+traversal+sequences+were+used+in+the+original+exploit%2C+although+their+role+is+not+clear.
Max CVSS 0 Min CVSS 0 Total Count0
ID CVSS CVSS3 Summary Last (major) update Published
Mark selected