A function in Internet Explorer 4.x and 5.x does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client files, aka a variant of the "Frame Domain Verification" vulnerability.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/1564 | Patch Vendor Advisory |
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-055 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2000-10-13T04:00:00
Updated: 2005-11-02T10:00:00
Reserved: 2000-09-19T00:00:00
Link: CVE-2000-0768
JSON object: View
NVD Information
Status : Modified
Published: 2000-10-20T04:00:00.000
Modified: 2021-07-23T12:18:31.047
Link: CVE-2000-0768
JSON object: View
Redhat Information
No data.
CWE