Exploitation Summary
EIP tracks 1 public exploit for CVE-2002-0193. PoCs published by Jani Laatikainen.
AI-analyzed exploit summary This is a writeup describing a vulnerability in Microsoft Internet Explorer where conflicting HTTP headers (Content-Type and Content-disposition) can lead to automatic download and execution of attacker-supplied programs. The issue is exacerbated by the presence of Windows Media Player 6.4 or 7.1.
Description
Microsoft Internet Explorer 5.01 and 6.0 allow remote attackers to execute arbitrary code via malformed Content-Disposition and Content-Type header fields that cause the application for the spoofed file type to pass the file back to the operating system for handling rather than raise an error message, aka the first variant of the "Content Disposition" vulnerability.
Exploits (1)
This is a writeup describing a vulnerability in Microsoft Internet Explorer where conflicting HTTP headers (Content-Type and Content-disposition) can lead to automatic download and execution of attacker-supplied programs. The issue is exacerbated by the presence of Windows Media Player 6.4 or 7.1.