CVE-2001-0002

CVE Database · CVE-2001-0002

CVE-2001-0002

· N/AModified

CVSS v3.1

N/A

EPSS

20.21%

Published

Jul 21, 2001

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Internet Explorer 5.5 and earlier allows remote attackers to obtain the physical location of cached content and open the content in the Local Computer Zone, then use compiled HTML help (.chm) files to execute arbitrary programs.

Affected Products (4)

microsoft · internet_explorervulnerable

microsoft · windows_script_hostvulnerable

References (12)

http://www.guninski.com/chmtempmain.html

http://www.osvdb.org/7823

http://www.securityfocus.com/bid/2456

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-015

https://exchange.xforce.ibmcloud.com/vulnerabilities/5567

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A920