Vulnerability Description
A function in Internet Explorer 5.0 through 5.5 does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client files, aka a new variant of the "Frame Domain Verification" vulnerability.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Internet Explorer | 5.0 |
References
- http://www.osvdb.org/7817
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-09
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6086
- http://www.osvdb.org/7817
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-09
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6086
FAQ
What is CVE-2001-0092?
CVE-2001-0092 is a vulnerability with a CVSS score of 2.6 (LOW). A function in Internet Explorer 5.0 through 5.5 does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client files, aka a new variant of the "F...
How severe is CVE-2001-0092?
CVE-2001-0092 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-0092?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Internet Explorer.