CVE-2002-1188

Name of the Vulnerable Software and Affected Versions: Internet Explorer versions 5.01 through 6.0

Description: The issue allows remote attackers to identify the path to the Temporary Internet Files folder and obtain user information, such as cookies, via certain uses of the OBJECT tag. This occurs because the OBJECT tag is not subjected to the proper security checks.

Recommendations: For Internet Explorer versions 5.01 through 6.0, consider disabling the use of the OBJECT tag until a patch is available. Restrict access to sensitive user information to minimize the risk of exploitation.