← back
CVE-2002-2031

CVE-2002-2031

EPSS 20.5%
Internet Explorer 5.0, 5.0.1 and 5.5 with JavaScript execution enabled allows remote attackers to determine the existence of arbitrary files via a script tag with a src parameter that references a non-JavaScript file, then using the onError event handler to monitor the results.
Affected products
n/a · n/a
public PoCs found2
exploitdbwww.exploit-db.com/exploits/21198unverifiedexploitdbwww.exploit-db.com/exploits/21199unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2002-01/0019.htmlhttp://www.iss.net/security_center/static/7784.phphttp://www.securityfocus.com/bid/3779