ID CVE-2002-0026
Summary Internet Explorer 5.5 and 6.0 allows remote attackers to bypass restrictions for executing scripts via an object that processes asynchronous events after the initial security checks have been made.
References
Vulnerable Configurations
  • cpe:2.3:a:microsoft:ie:5.5:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:ie:5.5:*:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:ie:6.0:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:ie:6.0:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 12-10-2018 - 21:30)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
oval via4
  • accepted 2014-02-24T04:00:10.389-05:00
    class vulnerability
    contributors
    • name David Proulx
      organization The MITRE Corporation
    • name Maria Mikhno
      organization ALTX-SOFT
    description Internet Explorer 5.5 and 6.0 allows remote attackers to bypass restrictions for executing scripts via an object that processes asynchronous events after the initial security checks have been made.
    family windows
    id oval:org.mitre.oval:def:12
    status accepted
    submitted 2003-11-12T12:00:00.000-04:00
    title IE v5.5,SP2 Forced Script Execution
    version 66
  • accepted 2014-02-24T04:03:12.135-05:00
    class vulnerability
    contributors
    • name David Proulx
      organization The MITRE Corporation
    • name Maria Mikhno
      organization ALTX-SOFT
    description Internet Explorer 5.5 and 6.0 allows remote attackers to bypass restrictions for executing scripts via an object that processes asynchronous events after the initial security checks have been made.
    family windows
    id oval:org.mitre.oval:def:23
    status accepted
    submitted 2003-11-12T12:00:00.000-04:00
    title IE v5.5 Forced Script Execution
    version 66
  • accepted 2014-02-24T04:03:14.826-05:00
    class vulnerability
    contributors
    • name David Proulx
      organization The MITRE Corporation
    • name Christine Walzer
      organization The MITRE Corporation
    • name Maria Mikhno
      organization ALTX-SOFT
    description Internet Explorer 5.5 and 6.0 allows remote attackers to bypass restrictions for executing scripts via an object that processes asynchronous events after the initial security checks have been made.
    family windows
    id oval:org.mitre.oval:def:32
    status accepted
    submitted 2003-11-12T05:00:00.000-04:00
    title IE v6.0 Forced Script Execution
    version 66
refmap via4
bid 4082
Last major update 12-10-2018 - 21:30
Published 08-03-2002 - 05:00
Last modified 12-10-2018 - 21:30
Back to Top