Vulnerabilities > CVE-2001-0722 - Unspecified vulnerability in Microsoft Internet Explorer 5.5/6.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
Internet Explorer 5.5 and 6.0 allows remote attackers to read and modify user cookies via Javascript in an about: URL, aka the "First Cookie Handling Vulnerability."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Exploit-Db
description | Microsoft Internet Explorer 5/6 Cookie Disclosure/Modification Vulnerability. CVE-2001-0722. Remote exploit for windows platform |
id | EDB-ID:21144 |
last seen | 2016-02-02 |
modified | 2001-11-09 |
published | 2001-11-09 |
reporter | Jouko Pynnonen |
source | https://www.exploit-db.com/download/21144/ |
title | Microsoft Internet Explorer 5/6 Cookie Disclosure/Modification Vulnerability |
References
- http://www.securityfocus.com/archive/1/221612
- http://www.ciac.org/ciac/bulletins/m-016.shtml
- http://www.securityfocus.com/bid/3513
- http://www.osvdb.org/1982
- http://marc.info/?l=bugtraq&m=100527618108521&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7486
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-055