CVE-2001-0149

Windows Scripting Host - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0149. PoCs published by Georgi Guninski.

AI-analyzed exploit summary This exploit leverages a vulnerability in Microsoft Internet Explorer and Outlook Express via the 'GetObject()' JScript function and the 'htmlfile' ActiveX object to read arbitrary files on the victim's system. The PoC includes a Base64-encoded payload to bypass patches, demonstrating an information leak attack.

Description

Windows Scripting Host in Internet Explorer 5.5 and earlier allows remote attackers to read arbitrary files via the GetObject Javascript function and the htmlfile ActiveX object.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Georgi Guninski · htmlremotewindows

https://www.exploit-db.com/exploits/20243

View Code ZIP pw:eip

This exploit leverages a vulnerability in Microsoft Internet Explorer and Outlook Express via the 'GetObject()' JScript function and the 'htmlfile' ActiveX object to read arbitrary files on the victim's system. The PoC includes a Base64-encoded payload to bypass patches, demonstrating an information leak attack.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Internet Explorer, Outlook Express (Windows Script Host)

No auth needed

Prerequisites: Victim must open a malicious HTML document or email · Known file path on the victim's system

MITRE ATT&CK