CVE-2001-1325

Internet Explorer 5.0 and 5.5, and Outlook Express 5.0 and 5.5, allow remote attackers to execute scripts when Active Scripting is disabled by including the scripts in XML stylesheets (XSL) that are referenced using an IFRAME tag, possibly due to a vulnerability in Windows Scripting Host (WSH).
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:internet_explorer:5.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:outlook_express:5.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:outlook_express:5.5:*:*:*:*:*:*:*

History

20 Nov 2024, 23:37

Type Values Removed Values Added
References () http://www.securityfocus.com/archive/1/3AE02004.57FDF958%40guninski.com - () http://www.securityfocus.com/archive/1/3AE02004.57FDF958%40guninski.com -
References () http://www.securityfocus.com/bid/2633 - Exploit, Patch, Vendor Advisory () http://www.securityfocus.com/bid/2633 - Exploit, Patch, Vendor Advisory
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/6448 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/6448 -

07 Nov 2023, 01:55

Type Values Removed Values Added
References
  • {'url': 'http://www.securityfocus.com/archive/1/3AE02004.57FDF958@guninski.com', 'name': '20010420 XML scripting in IE, Outlook Express', 'tags': [], 'refsource': 'BUGTRAQ'}
  • () http://www.securityfocus.com/archive/1/3AE02004.57FDF958%40guninski.com -

Information

Published : 2001-04-20 04:00

Updated : 2024-11-20 23:37


NVD link : CVE-2001-1325

Mitre link : CVE-2001-1325

CVE.ORG link : CVE-2001-1325


JSON object : View

Products Affected

microsoft

  • internet_explorer
  • outlook_express