CVE-2001-0874 — Microsoft Internet Explorer vulnerability

2 documents2 sources

Severity

5.0MEDIUMNVD

EPSS

31.7%

top 3.19%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Internet Explorer

Timeline

PublishedDec 13

Latest updateApr 30

Description

Internet Explorer 5.5 and 6.0 allow remote attackers to read certain files via HTML that passes information from a frame in the client's domain to a frame in the web site's domain, a variant of the "Frame Domain Verification" vulnerability.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDmicrosoft/internet_explorer5.5, 6.0+1

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-6f3g-66w3-5493: Internet Explorer 5↗2022-04-30

▶