CVE-2000-0028

Published: Dec 23, 1999Modified: Apr 16, 2026

2.6

Vector

AV:N/AC:H/Au:N/C:P/I:N/A:N

Exploitability: 4.9 / Impact: 2.9

Source: NVD

Description

Internet Explorer 5.0 and 5.01 allows remote attackers to bypass the cross frame security policy and read files via the external.NavigateAndFind function.

Affected (11)

Products: Microsoft: Ie, Internet Explorer

Microsoft

2 products

Internet Explorer

Configuration A

11 vulnerable

Vulnerable Software	Affected Versions
Microsoft Ie	Version 4.0 a_mac_os
Microsoft Internet Explorer	Version 3.0.2
Microsoft Internet Explorer	Version 3.0
Microsoft Internet Explorer	Version 3.1
Microsoft Internet Explorer	Version 3.2
Microsoft Internet Explorer	Version 4.0.1 sp2
Microsoft Internet Explorer	Version 4.0
Microsoft Internet Explorer	Version 4.1
Microsoft Internet Explorer	Version 4.5
Microsoft Internet Explorer	Version 5.0
Microsoft Internet Explorer	Version 5.1

References (2)

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0028

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0028

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.