CVE-2002-0153

Internet Explorer 5.1 for Macintosh - Auth Bypass

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-0153. PoCs published by Jass Seljamaa.

AI-analyzed exploit summary This exploit leverages a vulnerability in MacOS Internet Explorer 5.1 and earlier, allowing execution of local programs via crafted file URLs. It specifically targets 'Speakable Items' to trigger actions like putting the computer to sleep.

Description

Internet Explorer 5.1 for Macintosh allows remote attackers to bypass security checks and invoke local AppleScripts within a specific HTML element, aka the "Local Applescript Invocation" vulnerability.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Jass Seljamaa · textremoteosx

https://www.exploit-db.com/exploits/21238

View Code ZIP pw:eip

This exploit leverages a vulnerability in MacOS Internet Explorer 5.1 and earlier, allowing execution of local programs via crafted file URLs. It specifically targets 'Speakable Items' to trigger actions like putting the computer to sleep.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Internet Explorer 5.1 and earlier on MacOS 8/9

No auth needed

Prerequisites: Knowledge of the target's hard drive name and path to 'Speakable Items'

MITRE ATT&CK

T1204 - User Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/3935

Vendor Advisory vendor-advisory x_refsource_ms

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-019

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/251805

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/7969

Third Party Advisory vdb-entry x_refsource_xf

http://www.iss.net/security_center/static/8851.php

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/5356

Scores

EPSS 0.1775

EPSS Percentile 96.8%

Details

Status published

Products (7)

microsoft/ie 3.0

microsoft/ie 3.1

microsoft/ie 4.0 (2 CPE variants)

microsoft/ie 4.0.1

microsoft/ie 4.5

microsoft/ie 5.0

microsoft/ie 5.1

Published Apr 22, 2002

Tracked Since Feb 18, 2026