Vulnerabilities > Microsoft > Internet Explorer > 5.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-02-16 | CVE-2001-0092 | Unspecified vulnerability in Microsoft Internet Explorer 5.0/5.01/5.5 A function in Internet Explorer 5.0 through 5.5 does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client files, aka a new variant of the "Frame Domain Verification" vulnerability. | 2.6 |
| 2001-02-16 | CVE-2001-0091 | Unspecified vulnerability in Microsoft Internet Explorer The ActiveX control for invoking a scriptlet in Internet Explorer 5.0 through 5.5 renders arbitrary file types instead of HTML, which allows an attacker to read arbitrary files, aka a variant of the "Scriptlet Rendering" vulnerability. | 2.6 |
| 2001-02-16 | CVE-2001-0089 | Unspecified vulnerability in Microsoft Internet Explorer Internet Explorer 5.0 through 5.5 allows remote attackers to read arbitrary files from the client via the INPUT TYPE element in an HTML form, aka the "File Upload via Form" vulnerability. | 2.6 |
| 2000-12-19 | CVE-2000-0982 | Unspecified vulnerability in Microsoft Internet Explorer Internet Explorer before 5.5 forwards cached user credentials for a secure web site to insecure pages on the same web site, which could allow remote attackers to obtain the credentials by monitoring connections to the web server, aka the "Cached Web Credentials" vulnerability. | 7.5 |
| 2000-10-20 | CVE-2000-0767 | Unspecified vulnerability in Microsoft Internet Explorer The ActiveX control for invoking a scriptlet in Internet Explorer 4.x and 5.x renders arbitrary file types instead of HTML, which allows an attacker to read arbitrary files, aka the "Scriptlet Rendering" vulnerability. | 2.6 |
| 2000-06-06 | CVE-2000-0503 | Unspecified vulnerability in Microsoft Internet Explorer The IFRAME of the WebBrowser control in Internet Explorer 5.01 allows a remote attacker to violate the cross frame security policy via the NavigateComplete2 event. | 2.6 |
| 2000-05-17 | CVE-2000-0465 | Unspecified vulnerability in Microsoft Internet Explorer Internet Explorer 4.x and 5.x does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client files via the frame, aka the "Frame Domain Verification" vulnerability. | 5.1 |
| 2000-05-17 | CVE-2000-0464 | Unspecified vulnerability in Microsoft Internet Explorer Internet Explorer 4.x and 5.x allows remote attackers to execute arbitrary commands via a buffer overflow in the ActiveX parameter parsing capability, aka the "Malformed Component Attribute" vulnerability. | 7.6 |
| 2000-03-01 | CVE-2000-0201 | Unspecified vulnerability in Microsoft Internet Explorer 5.0/5.01 The window.showHelp() method in Internet Explorer 5.x does not restrict HTML help files (.chm) to be executed from the local host, which allows remote attackers to execute arbitrary commands via Microsoft Networking. | 5.1 |
| 2000-02-16 | CVE-2000-0156 | Unspecified vulnerability in Microsoft Internet Explorer Internet Explorer 4.x and 5.x allows remote web servers to access files on the client that are outside of its security domain, aka the "Image Source Redirect" vulnerability. | 5.1 |