File Upload Vulnerability in Microsoft Internet Explorer 6.0 and Other Versions
CVE-2002-2311

Currently unrated

Key Information:

Vendor: Opera Software
Status: Opera Web Browser; Internet Explorer
Vendor: CVE Published:; 31 December 2002

🔔 Create Opera Software Vulnerability Alert

What is CVE-2002-2311?

Microsoft Internet Explorer 6.0, along with possibly other versions, contains a vulnerability that allows remote attackers to exploit the functionality of the key event handlers associated with JavaScript. Specifically, when a user interacts with a webpage by pressing designated key combinations, such as 'Ctrl' or 'Shift', the browser may inadvertently upload arbitrary file contents. This flaw opens the door for potential misuse and manipulation of user data, making it critical for users to be aware of the risk and to implement security measures accordingly.

References

http://online.securityfocus.com/archive/1/283866

mailing-listx_refsource_BUGTRAQ

http://www.iss.net/security_center/static/9653.php

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/5290

vdb-entryx_refsource_BID

EPSS Score

22% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 31, 2002