Local File Access Vulnerability in Internet Explorer: Exploiting Hyperlinks to Open Files

CVE-2019-11702 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

A hyperlink using protocols associated with Internet Explorer, such as IE.HTTP:, can be used to open local files at a known location with Internet Explorer if a user approves execution when prompted. *Note: this issue only occurs on Windows. Other operating systems are unaffected.*. This vulnerability affects Firefox < 67.0.2.

Learn more about our Cis Benchmark Audit For Operating Systems.