CVE-2001-0092Microsoft Internet Explorer vulnerability

2 documents2 sources
Severity
2.6LOWNVD
EPSS
18.4%
top 4.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Internet Explorer
Timeline
PublishedFeb 16
Latest updateApr 30

Description

A function in Internet Explorer 5.0 through 5.5 does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client files, aka a new variant of the "Frame Domain Verification" vulnerability.

CVSS vector

AV:N/AC:H/C:P/I:N/A:NExploitability: 4.9 | Impact: 2.9

Affected Packages1 packages

NVDmicrosoft/internet_explorer5.0, 5.01, 5.5+2

🔴Vulnerability Details

1
GHSA
GHSA-r69c-wm2r-fvc6: A function in Internet Explorer 52022-04-30
CVE-2001-0092 — Microsoft vulnerability | cvebase