PT-1999-1837 · Microsoft · Internet Explorer
Published
1999-12-23
·
Updated
2022-08-17
·
CVE-2000-0028
CVSS v2.0
2.6
Low
| Vector | AV:N/AC:H/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Internet Explorer versions 5.0 through 5.01
Description:
The issue allows remote attackers to bypass the cross frame security policy and read files via the external.NavigateAndFind function.
Recommendations:
For Internet Explorer versions 5.0 through 5.01, consider disabling the NavigateAndFind function as a temporary workaround until a patch is available.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Internet Explorer