CVE-2001-0092

2001-05-0704:00:00

mitre

www.cve.org

6.4 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.4%

JSON

A function in Internet Explorer 5.0 through 5.5 does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client files, aka a new variant of the “Frame Domain Verification” vulnerability.

References

www.osvdb.org/7817

docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-093

exchange.xforce.ibmcloud.com/vulnerabilities/6086