CVE Catalog

CVE-2000-0028

Low
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Very high risk
23.13%

97th percentile — higher than 97% of all known CVEs

Summary

Internet Explorer 5.0 and 5.01 allows remote attackers to bypass the cross frame security policy and read files via the external.NavigateAndFind function.

Risk Assessment

Attackers may gain access to sensitive user data, potentially leading to serious security breaches.

Recommendation

It is recommended to update Internet Explorer to the latest version or use alternative browsers that do not have this vulnerability.

Original NVD description (English source)

Internet Explorer 5.0 and 5.01 allows remote attackers to bypass the cross frame security policy and read files via the external.NavigateAndFind function.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS