VDB
GCVE-110-CERTCC-2003-205148
GCVE-110-CERTCC-2003-205148
Advisory Published
A cross-domain scripting vulnerability exists in the way Microsoft Internet Explorer (IE) evaluates Content-Type and Content-Disposition headers and checks for files in the local browser cache. This vulnerability could allow a remote attacker to execute arbitrary script in a different domain, including the Local Machine Zone.
Risk Scores
certcc-cam
certcc-cam
impact11population18exploitation0widely_known14score_current20.27025ease_of_exploitation13
Aliases
References
Microsoft Internet Explorer does not properly evaluate Content-Type and Content-Disposition headers
advisory
Microsoft Internet Explorer does not properly evaluate Content-Type and Content-Disposition headers
url
Microsoft Internet Explorer does not properly evaluate Content-Type and Content-Disposition headers
advisory
Microsoft Internet Explorer does not properly evaluate Content-Type and Content-Disposition headers
advisory
Microsoft Internet Explorer does not properly evaluate Content-Type and Content-Disposition headers
advisory
Microsoft Internet Explorer does not properly evaluate Content-Type and Content-Disposition headers
advisory
Microsoft Internet Explorer does not properly evaluate Content-Type and Content-Disposition headers
url
Microsoft Internet Explorer does not properly evaluate Content-Type and Content-Disposition headers
url
Browse GCVE Records
73,685 records in the GCVE database · Updated July 18, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.