← CVECheck
HomeVulnerabilities

CVE-2001-0149 — MEDIUM severity vulnerability (Windows Scripting Host in Internet Explorer 5.5 and earlier)

Windows Scripting Host in Internet Explorer 5.5 and earlier allows remote attackers to read arbitrary files via the GetObject Javascript function and the htmlfile ActiveX object.

CVE IDCVE-2001-0149
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2001-06-02
Last modified2026-04-16
DescriptionWindows Scripting Host in Internet Explorer 5.5 and earlier allows remote attackers to read arbitrary files via the GetObject Javascript function and the htmlfile ActiveX object.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →