2 matches found
CVE-2002-0027
Internet Explorer 5.5 and 6.0 allows remote attackers to read certain files and spoof the URL in the address bar by using the Document.open function to pass information between two frames from different domains, a new variant of the "Frame Domain Verification" vulnerability described in...
CVE-2000-0768
The CVE-2000-0768 issue affects Internet Explorer 4.x and 5.x where a function that verifies the domain of a frame within a browser window fails to properly verify, enabling a remote attacker to read client files. Affected component: the Frame Domain Verification logic in IE. Root cause: inadequa...