CVE Vulnerabilities

CVE-2001-1325

Published: Apr 20, 2001 | Modified: Nov 07, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Internet Explorer 5.0 and 5.5, and Outlook Express 5.0 and 5.5, allow remote attackers to execute scripts when Active Scripting is disabled by including the scripts in XML stylesheets (XSL) that are referenced using an IFRAME tag, possibly due to a vulnerability in Windows Scripting Host (WSH).

Affected Software

Name Vendor Start Version End Version
Outlook_express Microsoft 5.0 5.0
Outlook_express Microsoft 5.5 5.5
Internet_explorer Microsoft 5.0 5.0
Internet_explorer Microsoft 5.5 5.5

References