Vulnerability in N/a
CVE-2002-1254
Internet Explorer 5.5 and 6.0 allows remote attackers to bypass the cross-domain security model and access information on the local system or in other domains, and possibly execute code, via cached methods and objects, aka "Cross Domain Ve…
EPSS: 0.662 (98.5th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 6028 (vdb-entry, x_refsource_BID)
- MS02-066 (x_refsource_MS, vendor-advisory)
- 20021022 Vulnerable cached objects in IE (9 advisories in 1) (mailing-list, x_refsource_BUGTRAQ)
- ie-cache-showmodaldialog-dom-access(10432) (vdb-entry, x_refsource_XF)
- ie-cache-getelementsbytagname-dom-access(10438) (vdb-entry, x_refsource_XF)
- ie-cache-getelementsbyname-dom-access(10437) (vdb-entry, x_refsource_XF)
- oval:org.mitre.oval:def:388 (signature, x_refsource_OVAL, vdb-entry)
- ie-cache-getelementbyid-dom-access(10436) (vdb-entry, x_refsource_XF)
- oval:org.mitre.oval:def:408 (signature, x_refsource_OVAL, vdb-entry)
- ie-cache-elementfrompoint-dom-access(10435) (vdb-entry, x_refsource_XF)