CVE-2003-0701

Internet Explorer 6 SP1 - RCE

Title source: llm

Description

Buffer overflow in Internet Explorer 6 SP1 for certain languages that support double-byte encodings (e.g., Japanese) allows remote attackers to execute arbitrary code via the Type property of an Object tag, a variant of CVE-2003-0344.

Exploits (1)

exploitdb WORKING POC VERIFIED

by malware · htmlremotewindows

https://www.exploit-db.com/exploits/83

View Code ZIP pw:eip

References (4)

[US Government Resource] http://www.kb.cert.org/vuls/id/334928

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/12970

[Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-032

[Mailing List] http://marc.info/?l=bugtraq&m=106148101210479&w=2

Scores

EPSS 0.4436

EPSS Percentile 97.6%

Details

Status published

Products (4)

microsoft/ie 6.0

microsoft/internet_explorer 5.01

microsoft/internet_explorer 5.5

microsoft/internet_explorer 6.0

Published Aug 27, 2003

Tracked Since Feb 18, 2026