CVE-2002-2311

Currently unrated

Key Information:

Vendor: Opera Software
Status: Opera Web Browser; Internet Explorer
Vendor: CVE Published:; 31 December 2002

Summary

Microsoft Internet Explorer 6.0 and possibly others allows remote attackers to upload arbitrary file contents when users press a key corresponding to the JavaScript (1) event.ctrlKey or (2) event.shiftKey onkeydown event contained in a webpage. NOTE: it was reported that the vendor has disputed the severity of this issue.

References

http://online.securityfocus.com/archive/1/283866

mailing-listx_refsource_BUGTRAQ

http://www.iss.net/security_center/static/9653.php

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/5290

vdb-entryx_refsource_BID

EPSS Score

55% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 31, 2002