Vulnerabilities > CVE-2002-1564 - Unspecified vulnerability in Microsoft Internet Explorer 5.01/5.5/6.0

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

microsoft

NVD

Published: 2003-06-09

Updated: 2021-07-23

Summary

Internet Explorer 5.5 and 6.0 allows remote attackers to steal potentially sensitive information from cookies via a cookie that contains script which is executed when a page is loaded, aka the "Script within Cookies Reading Cookies" vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Internet Explorer 6.0 Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 5.5	3

References

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-023