Internet Explorer 5.0 and 5.5, and Outlook Express 5.0 and 5.5, allow remote attackers to execute scripts when Active Scripting is disabled by including the scripts in XML stylesheets (XSL) that are referenced using an IFRAME tag, possibly due to a vulnerability in Windows Scripting Host (WSH).
References
Link | Resource |
---|---|
http://www.securityfocus.com/archive/1/3AE02004.57FDF958%40guninski.com | |
http://www.securityfocus.com/bid/2633 | Exploit Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/6448 |
Configurations
Configuration 1 (hide)
|
History
07 Nov 2023, 01:55
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2001-04-20 04:00
Updated : 2024-02-28 10:24
NVD link : CVE-2001-1325
Mitre link : CVE-2001-1325
CVE.ORG link : CVE-2001-1325
JSON object : View
Products Affected
microsoft
- outlook_express
- internet_explorer
CWE