Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2000-0156Microsoft Internet Explorer vulnerability

3 documents3 sources
Severity
5.1MEDIUMNVD
EPSS
17.5%
top 4.90%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Microsoft Internet Explorer
Timeline
PublishedFeb 16
Latest updateApr 30

Description

Internet Explorer 4.x and 5.x allows remote web servers to access files on the client that are outside of its security domain, aka the "Image Source Redirect" vulnerability.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages1 packages

NVDmicrosoft/internet_explorer4 versions+3

🔴Vulnerability Details

1
GHSA
GHSA-6rhq-4pc8-424f: Internet Explorer 42022-04-30

💥Exploits & PoCs

1
Exploit-DB
Microsoft Internet Explorer 4.0/4.0.1/5.0/5.0.1/5.5 - preview Security Zone Settings Lag2000-01-07
CVE-2000-0156 — Microsoft vulnerability | cvebase