CVE-2005-0053

EXPLOITED

Internet Explorer <6 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2005-0053 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including http-equiv.

AI-analyzed exploit summary This is a writeup describing a vulnerability in Microsoft Internet Explorer where certain file types can be dragged and dropped from the Internet Zone, potentially allowing execution of embedded hostile HTML and script code. The vulnerability stems from the operating system dynamically determining file types based on content rather than extensions.

Description

Internet Explorer 5.01, 5.5, and 6 allows remote attackers to execute arbitrary code via drag and drop events, aka the "Drag-and-Drop Vulnerability."

Exploits (1)

exploitdb WRITEUP VERIFIED
by http-equiv · textremotewindows
https://www.exploit-db.com/exploits/24693

This is a writeup describing a vulnerability in Microsoft Internet Explorer where certain file types can be dragged and dropped from the Internet Zone, potentially allowing execution of embedded hostile HTML and script code. The vulnerability stems from the operating system dynamically determining file types based on content rather than extensions.

Classification
Writeup 80%
Attack Type
Other
Complexity
Moderate
Reliability
Theoretical
Target: Microsoft Internet Explorer (post-MS04-038 patch)
No auth needed
Prerequisites: User interaction to drag and drop a file · Victim using a vulnerable version of Internet Explorer
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (13)

Core 13
Core References
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4726
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4864
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1334
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2046
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2953
Patch, US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA05-039A.html
Patch, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/698835
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1015
Exploit, Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/11466
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3006
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/19117

Scores

EPSS 0.6588
EPSS Percentile 98.5%

Details

VulnCheck KEV 2005-02-08
Status published
Products (14)
microsoft/ie 6.0 sp1 (2 CPE variants)
microsoft/internet_explorer 5.0.1 (5 CPE variants)
microsoft/internet_explorer 5.5 (3 CPE variants)
microsoft/internet_explorer 6.0
microsoft/windows_2000 (5 CPE variants)
microsoft/windows_2003_server enterprise
microsoft/windows_2003_server enterprise_64-bit
microsoft/windows_2003_server r2 (2 CPE variants)
microsoft/windows_2003_server standard
microsoft/windows_2003_server web
... and 4 more
Published May 02, 2005
Tracked Since Feb 18, 2026