Lucene search

[email protected]CVE-2000-0028

HistoryFeb 04, 2000 - 5:00 a.m.

CVE-2000-0028

2000-02-0405:00:00

[email protected]

web.nvd.nist.gov

internet explorer

remote attack

file access

navigateandfind function

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

7.1 High

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

86.9%

JSON

Internet Explorer 5.0 and 5.01 allows remote attackers to bypass the cross frame security policy and read files via the external.NavigateAndFind function.

Affected configurations

NVD

Node

microsoftieMatch4.0a_mac_os

microsoftinternet_explorerMatch3.0

microsoftinternet_explorerMatch3.0.2

microsoftinternet_explorerMatch3.1

microsoftinternet_explorerMatch3.2

microsoftinternet_explorerMatch4.0

microsoftinternet_explorerMatch4.0.1sp2

microsoftinternet_explorerMatch4.1

microsoftinternet_explorerMatch4.5

microsoftinternet_explorerMatch5.0

microsoftinternet_explorerMatch5.1

CPENameOperatorVersion
microsoft:iemicrosoft ieeq4.0
microsoft:internet_explorermicrosoft internet explorereq3.0
microsoft:internet_explorermicrosoft internet explorereq3.0.2
microsoft:internet_explorermicrosoft internet explorereq3.1
microsoft:internet_explorermicrosoft internet explorereq3.2
microsoft:internet_explorermicrosoft internet explorereq4.0
microsoft:internet_explorermicrosoft internet explorereq4.0.1
microsoft:internet_explorermicrosoft internet explorereq4.1
microsoft:internet_explorermicrosoft internet explorereq4.5
microsoft:internet_explorermicrosoft internet explorereq5.0

CPE	Name	Operator	Version
microsoft:ie	microsoft ie	eq	4.0
microsoft:internet_explorer	microsoft internet explorer	eq	3.0
microsoft:internet_explorer	microsoft internet explorer	eq	3.0.2
microsoft:internet_explorer	microsoft internet explorer	eq	3.1
microsoft:internet_explorer	microsoft internet explorer	eq	3.2
microsoft:internet_explorer	microsoft internet explorer	eq	4.0
microsoft:internet_explorer	microsoft internet explorer	eq	4.0.1
microsoft:internet_explorer	microsoft internet explorer	eq	4.1
microsoft:internet_explorer	microsoft internet explorer	eq	4.5
microsoft:internet_explorer	microsoft internet explorer	eq	5.0

Rows per page:

1-10 of 111

References

exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0028

Social References

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

7.1 High

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

86.9%

JSON

Related for CVE-2000-0028

cvelist1 nvd1