CVE-2003-0116

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 5.01 through 6.0

Description The issue allows remote attackers to read files on the local system via a web page containing script that creates a dialog and then accesses the target files. This is due to improper checking of the Cascading Style Sheet input parameter for Modal dialogs.

Recommendations For Microsoft Internet Explorer versions 5.01 through 6.0, consider disabling the execution of scripts that create Modal dialogs as a temporary workaround until a patch is available. Restrict access to sensitive files on the local system to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.