CVE-2002-1187 in Internet Explorerinfo

Summary

Cross-site scripting vulnerability (XSS) in Internet Explorer 5.01 through 6.0 allows remote attackers to read and execute files on the local system via web pages using the <frame> or <iframe> element and javascript, aka "Frames Cross Site Scripting," as demonstrated using the PrivacyPolicy.dlg resource.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Disclosure

12/11/2002

Moderation

VulDB entry created

Entries

VDB-19197 (1)

CPE

ready

CWE

CWE-80 (Confirmed)

Exploit

Download

CVSS

6.3

EPSS

0.26559

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-1187
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-1187
CVE Details	https://www.cvedetails.com/cve/CVE-2002-1187/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!