VDB

GCVE-110-CERTCC-2003-865940

GCVE-110-CERTCC-2003-865940
Advisory Published
Vulnetix · Advisory published August 20, 2003
Microsoft Internet Explorer (IE) will execute an HTML Application (HTA) referenced by the DATA attribute of an OBJECT element if the Content-Type header returned by the web server is set to "application/hta". An attacker could exploit this vulnerability to execute arbitrary code with the privileges of the user running IE. Note: (2003-10-04) The patch provided by MS03-040 addresses two attack vectors that were not resolved by MS03-032.

Risk Scores

certcc-cam
certcc-cam
impact15population18exploitation7widely_known18score_current56.7ease_of_exploitation16

References

Browse GCVE Records

73,161 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›