PT-2000-1380 · Microsoft · Internet Explorer

Published

2000-05-11

Updated

2021-07-22

CVE-2000-0439

CVSS v2.0

2.6

Low

Vector

AV:N/AC:H/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Internet Explorer versions 4.0 through 5.0

Description The issue allows a malicious web site to obtain client cookies from another domain by including that domain name and escaped characters in a URL.

Recommendations For Internet Explorer versions 4.0 through 5.0, consider disabling the ability to access cookies from other domains as a temporary workaround until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2000-0439

Affected Products

Internet Explorer

PT-2000-1380 · Microsoft · Internet Explorer

CVE-2000-0439

Related Identifiers

Affected Products

References · 7