MS.ActiveX.htmlfile.File.Disclosure

description-logoDescription

It indicates a possible exploit of File Disclosure vulnerability in Windows Scripting Host in Internet Explorer 5.5 and earlier allows remote attackers to read arbitrary files via the GetObject Javascript function and the htmlfile ActiveX object.

affected-products-logoAffected Products

Microsoft Windows Scripting Host 5.5 and earlier versions.

Impact logoImpact

Information Disclosure.

recomended-action-logoRecommended Actions

Apply patch as given in the Microsoft bulletin MS01-015.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)