Cross-Site Scripting (XSS) Vulnerability in Internet Explorer's Rendering Engine

Cross-Site Scripting (XSS) Vulnerability in Internet Explorer's Rendering Engine

CVE-2001-0712 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The rendering engine in Internet Explorer determines the MIME type independently of the type that is specified by the server, which allows remote servers to automatically execute script which is placed in a file whose MIME type does not normally support scripting, such as text (.txt), JPEG (.jpg), etc.

Learn more about our Cis Benchmark Audit For Server Software.