PT-2000-1441 · Microsoft · Internet Explorer

Published

2000-06-06

Updated

2021-07-23

CVE-2000-0503

CVSS v2.0

2.6

Low

Vector

AV:N/AC:H/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Internet Explorer version 5.01

Description The issue concerns the IFRAME of the WebBrowser control in Internet Explorer, which allows a remote attacker to violate the cross-frame security policy. This is achieved via the NavigateComplete2 event.

Recommendations For Internet Explorer version 5.01, consider disabling the WebBrowser control or restricting its use until a patch is available. As a temporary workaround, avoid using the NavigateComplete2 event in the WebBrowser control to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2000-0503

Affected Products

Internet Explorer

PT-2000-1441 · Microsoft · Internet Explorer

CVE-2000-0503

Related Identifiers

Affected Products

References · 3