Vulnerabilities > CVE-2002-0026 - Unspecified vulnerability in Microsoft Internet Explorer 5.5/6.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Internet Explorer 5.5 and 6.0 allows remote attackers to bypass restrictions for executing scripts via an object that processes asynchronous events after the initial security checks have been made.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Oval
accepted 2014-02-24T04:00:10.389-05:00 class vulnerability contributors name David Proulx organization The MITRE Corporation name Maria Mikhno organization ALTX-SOFT
description Internet Explorer 5.5 and 6.0 allows remote attackers to bypass restrictions for executing scripts via an object that processes asynchronous events after the initial security checks have been made. family windows id oval:org.mitre.oval:def:12 status accepted submitted 2003-11-12T12:00:00.000-04:00 title IE v5.5,SP2 Forced Script Execution version 66 accepted 2014-02-24T04:03:12.135-05:00 class vulnerability contributors name David Proulx organization The MITRE Corporation name Maria Mikhno organization ALTX-SOFT
description Internet Explorer 5.5 and 6.0 allows remote attackers to bypass restrictions for executing scripts via an object that processes asynchronous events after the initial security checks have been made. family windows id oval:org.mitre.oval:def:23 status accepted submitted 2003-11-12T12:00:00.000-04:00 title IE v5.5 Forced Script Execution version 66 accepted 2014-02-24T04:03:14.826-05:00 class vulnerability contributors name David Proulx organization The MITRE Corporation name Christine Walzer organization The MITRE Corporation name Maria Mikhno organization ALTX-SOFT
description Internet Explorer 5.5 and 6.0 allows remote attackers to bypass restrictions for executing scripts via an object that processes asynchronous events after the initial security checks have been made. family windows id oval:org.mitre.oval:def:32 status accepted submitted 2003-11-12T05:00:00.000-04:00 title IE v6.0 Forced Script Execution version 66
References
- http://www.securityfocus.com/bid/4082
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A32
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A23
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-005