Internet Explorer 5.0/5.01 ImportExportFavorites Vulnerability

Internet Explorer 5.0 and 5.01 is a web browser used by millions of users in the late 1990s and early 2000s. This vulnerability allows remote attackers to modify or execute files via the Import/Export Favorites feature, which was intended for importing/exporting bookmarks.

You're affected if you use Internet Explorer 5.0 or 5.01. Check with: dir %APPDATA%\Microsoft\Windows\Cookies (for Windows XP) or dir %USERPROFILE%\AppData\Roaming\Microsoft\Windows\Cookies (for Windows Vista/7/8/10). Note that this vulnerability is not related to Internet Explorer 6, 7, 8, 9, 10, 11, or later versions.

Immediate mitigations:

• Disable the Import/Export Favorites feature by setting hkey_current_user\Software\Microsoft\Internet Explorer\Main\ImportExportFavorites to "0" in the registry (Windows XP) or HKEY_CURRENT_USER\SOFTWARE\MICROSOFTEX\INTERNET EXPLORER\MAIN\IMPORTEXPORTFAVORITES to "0" in the registry (Windows Vista/7/8/10).
• Use a registry fix tool, such as the one provided by Microsoft, to update the registry settings.

No official patch is available from Microsoft for this vulnerability. However, users can disable the feature or use workarounds to mitigate the risk.

• support.microsoft.com
• www.securityfocus.com
• docs.microsoft.com
• support.microsoft.com
• www.securityfocus.com
• docs.microsoft.com