Definition

IE File Download Dialog Deception Vulnerability

oval:org.mitre.oval:def:1014

Internet Explorer 5.5 and 6.0 allows remote attackers to cause the File Download dialogue box to misrepresent the name of the file in the dialogue in a way that could fool users into thinking that the file type is safe to download.

Family:

windows

Status:

ACCEPTED

Platform(s):

Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows ME
Microsoft Windows NT
Microsoft Windows 98

Class:

vulnerability

Reference(s):

CVE-2001-0875

Product(s):

Microsoft Internet Explorer