← CVECheck
HomeVulnerabilities

CVE-2002-0022 — HIGH severity vulnerability (Buffer overflow in the implementation of an HTML directive i)

Buffer overflow in the implementation of an HTML directive in mshtml.dll in Internet Explorer 5.5 and 6.0 allows remote attackers to execute arbitrary code via a web page that specifies embedded ActiveX controls in a way that causes 2 Unicode strings to be concatenated.

CVE IDCVE-2002-0022
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2002-03-08
Last modified2026-04-16
DescriptionBuffer overflow in the implementation of an HTML directive in mshtml.dll in Internet Explorer 5.5 and 6.0 allows remote attackers to execute arbitrary code via a web page that specifies embedded ActiveX controls in a way that causes 2 Unicode strings to be concatenated.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →