CVE Vulnerabilities

CVE-2001-1325

Published: Apr 20, 2001 | Modified: Jul 23, 2021
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Internet Explorer 5.0 and 5.5, and Outlook Express 5.0 and 5.5, allow remote attackers to execute scripts when Active Scripting is disabled by including the scripts in XML stylesheets (XSL) that are referenced using an IFRAME tag, possibly due to a vulnerability in Windows Scripting Host (WSH).

Affected Software

Name Vendor Start Version End Version
Internet_explorer Microsoft 5.5 5.5
Outlook_express Microsoft 5.0 5.0
Outlook_express Microsoft 5.5 5.5
Internet_explorer Microsoft 5.0 5.0

References