CVE-2001-0664

Published: Oct 30, 2001Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Internet Explorer 5.5 and 5.01 allows remote attackers to bypass security restrictions via malformed URLs that contain dotless IP addresses, which causes Internet Explorer to process the page in the Intranet Zone, which may have fewer security restrictions, aka the "Zone Spoofing vulnerability."

Affected (2)

Products: Microsoft: Internet Explorer

1 product

Internet Explorer

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Microsoft Internet Explorer	Version 5.01
Microsoft Internet Explorer	Version 5.5

References (12)

http://marc.info/?l=bugtraq&m=100281551611595&w=2

Source: cve@mitre.org

http://morph3us.org/blog/?p=31

Source: cve@mitre.org

http://www.osvdb.org/1971

Source: cve@mitre.org

http://www.securityfocus.com/bid/3420

Source: cve@mitre.org

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-051

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/7258

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=100281551611595&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://morph3us.org/blog/?p=31

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/1971

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/3420

Source: af854a3a-2127-422b-91ae-364da2661108

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-051

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/7258

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.