CVE-2002-1254

Published: Dec 11, 2002Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Internet Explorer 5.5 and 6.0 allows remote attackers to bypass the cross-domain security model and access information on the local system or in other domains, and possibly execute code, via cached methods and objects, aka "Cross Domain Verification via Cached Methods."

Affected (5)

Products: Microsoft: Ie, Internet Explorer

2 products

Internet Explorer

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Microsoft Ie	Version 6.0 sp1
Microsoft Internet Explorer	Version 5.5
Microsoft Internet Explorer	Version 5.5 sp1
Microsoft Internet Explorer	Version 5.5 sp2
Microsoft Internet Explorer	Version 6.0

References (26)

http://marc.info/?l=bugtraq&m=103530131201191&w=2

Source: cve@mitre.org

http://security.greymagic.com/adv/gm012-ie/

Source: cve@mitre.org

http://www.ciac.org/ciac/bulletins/n-018.shtml

Source: cve@mitre.org

http://www.iss.net/security_center/static/10435.php

Source: cve@mitre.org

http://www.iss.net/security_center/static/10436.php

Source: cve@mitre.org

http://www.iss.net/security_center/static/10437.php

Source: cve@mitre.org

http://www.iss.net/security_center/static/10438.php

Source: cve@mitre.org

http://www.iss.net/security_center/static/10439.php

Source: cve@mitre.org

http://www.securityfocus.com/bid/6028

Source: cve@mitre.org

ExploitPatchVendor Advisory

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-066

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/10432

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A388

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A408

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=103530131201191&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://security.greymagic.com/adv/gm012-ie/

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ciac.org/ciac/bulletins/n-018.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.iss.net/security_center/static/10435.php

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.iss.net/security_center/static/10436.php

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.iss.net/security_center/static/10437.php

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.iss.net/security_center/static/10438.php

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.iss.net/security_center/static/10439.php

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/6028

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchVendor Advisory

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-066

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/10432

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A388

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A408

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.