CVE-2002-0188

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 5.01 through 6.0

Description The issue allows remote attackers to execute arbitrary code via malformed Content-Disposition and Content-Type header fields. This causes the application for the spoofed file type to pass the file back to the operating system for handling rather than raise an error message.

Recommendations For Microsoft Internet Explorer versions 5.01 through 6.0, consider applying configuration changes to handle malformed header fields correctly until a fix is available. As a temporary workaround, restrict the handling of spoofed file types to minimize the risk of exploitation.