CVE-2001-0722

Published: Dec 6, 2001Modified: Apr 16, 2026

6.4

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:N

Exploitability: 10.0 / Impact: 4.9

Source: NVD

Description

Internet Explorer 5.5 and 6.0 allows remote attackers to read and modify user cookies via Javascript in an about: URL, aka the "First Cookie Handling Vulnerability."

Affected (2)

Products: Microsoft: Internet Explorer

Microsoft

1 product

Internet Explorer

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Microsoft Internet Explorer	Version 5.5
Microsoft Internet Explorer	Version 6.0

References (14)

http://marc.info/?l=bugtraq&m=100527618108521&w=2

Source: cve@mitre.org

http://www.ciac.org/ciac/bulletins/m-016.shtml

Source: cve@mitre.org

http://www.osvdb.org/1982

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/221612

Source: cve@mitre.org

ExploitPatchVendor Advisory

http://www.securityfocus.com/bid/3513

Source: cve@mitre.org

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-055

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/7486

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=100527618108521&w=2