Details of VAR-200112-0067

ID

VAR-200112-0067

CVE

CVE-2001-0720

TITLE

Mac OS X 10.1 Microsoft IE 5.1 Download execution vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200112-044

DESCRIPTION

Internet Explorer 5.1 for Macintosh on Mac OS X allows remote attackers to execute arbitrary commands by causing a BinHex or MacBinary file type to be downloaded, which causes the files to be executed if automatic decoding is enabled. BinHex and MacBinary are binary file types used by the Macintosh operating systems. Earlier versions of Internet Explorer have not been tested, but may also be vulnerable. Internet Explorer 5.1 for Macintosh under the Mac OS X platform has a vulnerability

Trust: 1.26

sources: NVD: CVE-2001-0720 // BID: 3471 // VULHUB: VHN-3529

AFFECTED PRODUCTS

vendor:	apple	model:	mac os x	scope:	eq	version:	10.4.9	Trust: 1.6
vendor:	microsoft	model:	internet explorer macintosh edition	scope:	eq	version:	5.1	Trust: 0.3
vendor:	microsoft	model:	internet explorer macintosh edition	scope:	ne	version:	5.1.1	Trust: 0.3

sources: BID: 3471 // CNNVD: CNNVD-200112-044 // NVD: CVE-2001-0720

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2001-0720
value:	HIGH
Trust: 1.0
CNNVD:	CNNVD-200112-044
value:	HIGH
Trust: 0.6
VULHUB:	VHN-3529
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2001-0720
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-3529
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-3529 // CNNVD: CNNVD-200112-044 // NVD: CVE-2001-0720

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2001-0720

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200112-044

TYPE

wrong environmental conditions

Trust: 0.6

sources: CNNVD: CNNVD-200112-044

EXTERNAL IDS

db:	BID	id:	3471	Trust: 2.0
db:	NVD	id:	CVE-2001-0720	Trust: 1.7
db:	CNNVD	id:	CNNVD-200112-044	Trust: 0.7
db:	MS	id:	MS01-053	Trust: 0.6
db:	CIAC	id:	M-013	Trust: 0.6
db:	XF	id:	7336	Trust: 0.6
db:	VULHUB	id:	VHN-3529	Trust: 0.1

sources: VULHUB: VHN-3529 // BID: 3471 // CNNVD: CNNVD-200112-044 // NVD: CVE-2001-0720

REFERENCES

url:	http://www.securityfocus.com/bid/3471	Trust: 1.7
url:	http://www.ciac.org/ciac/bulletins/m-013.shtml	Trust: 1.7
url:	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-053	Trust: 1.1
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/7336	Trust: 1.1
url:	http://www.microsoft.com/technet/security/bulletin/ms01-053.asp	Trust: 0.6
url:	http://xforce.iss.net/static/7336.php	Trust: 0.6
url:	http://www.apple.com/macosx/upgrade/softwareupdates.html	Trust: 0.3
url:	http://docs.info.apple.com/article.html?artnum=106503	Trust: 0.3
url:	http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/ms01-053.asp	Trust: 0.3

sources: VULHUB: VHN-3529 // BID: 3471 // CNNVD: CNNVD-200112-044 // NVD: CVE-2001-0720

CREDITS

Announced by Microsoft in Security Bulletin MS01-053 on October 23, 2001.

Trust: 0.9

sources: BID: 3471 // CNNVD: CNNVD-200112-044

SOURCES

db:	VULHUB	id:	VHN-3529
db:	BID	id:	3471
db:	CNNVD	id:	CNNVD-200112-044
db:	NVD	id:	CVE-2001-0720

LAST UPDATE DATE

2025-04-03T22:27:27.468000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-3529	date:	2018-10-12T00:00:00
db:	BID	id:	3471	date:	2001-10-23T00:00:00
db:	CNNVD	id:	CNNVD-200112-044	date:	2005-05-02T00:00:00
db:	NVD	id:	CVE-2001-0720	date:	2025-04-03T01:03:51.193

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-3529	date:	2001-12-06T00:00:00
db:	BID	id:	3471	date:	2001-10-23T00:00:00
db:	CNNVD	id:	CNNVD-200112-044	date:	2001-12-06T00:00:00
db:	NVD	id:	CVE-2001-0720	date:	2001-12-06T05:00:00