Published: 17/05/2000 Updated: 23/07/2021

CVSS v2 Base Score: 5.1 | Impact Score: 6.4 | Exploitability Score: 4.9

VMScore: 515

Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P

Internet Explorer 4.x and 5.x does not properly verify the domain of a frame within a browser window, which allows a remote malicious user to read client files via the frame, aka the "Frame Domain Verification" vulnerability.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft internet explorer 5.0
microsoft internet explorer 5.01
microsoft internet explorer 5.5
microsoft internet explorer 4.0

source: wwwsecurityfocuscom/bid/1224/info The DocumentComplete() function in IE does not properly validate origin domains Therefore it is possible for a remote webserver to gain read access to local files on the machine of any website visitor or email recipient by accessing the browser object of a frame containing local content Only fi ...

NVD-CWE-Other http://www.microsoft.com/technet/support/kb.asp?ID=251108 http://www.microsoft.com/technet/support/kb.asp?ID=255676 http://www.securityfocus.com/bid/1224 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-033 https://nvd.nist.gov https://www.exploit-db.com/exploits/19939/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2000-0465

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect