CVSS: 4.3EPSS: 94%CPEs: 4EXPL: 4CVE-2002-2062 – Microsoft Internet Explorer 5/6 - FTP Web View Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2002-2062
Cross-site scripting (XSS) vulnerability in ftp.htt in Internet Explorer 5.5 and 6.0, when running on Windows 2000 with "Enable folder view for FTP sites" and "Enable Web content in folders" selected, allows remote attackers to inject arbitrary web script or HTML via the hostname portion of an FTP URL. • https://www.exploit-db.com/exploits/21515 http://archives.neohapsis.com/archives/bugtraq/2002-06/0037.html http://www.geocities.co.jp/SiliconValley/1667/advisory02e.html http://www.iss.net/security_center/static/9290.php http://www.securityfocus.com/bid/4954 •
CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0CVE-2002-1824
https://notcve.org/view.php?id=CVE-2002-1824
Microsoft Internet Explorer 6.0, when handling an expired CA-CERT in a webserver's certificate chain during a SSL/TLS handshake, does not prompt the user before searching for and finding a newer certificate, which may allow attackers to perform a man-in-the-middle attack. NOTE: it is not clear whether this poses a vulnerability. • http://online.securityfocus.com/archive/1/292842 http://www.iss.net/security_center/static/10180.php http://www.securityfocus.com/bid/5778 •
CVSS: 5.0EPSS: 1%CPEs: 4EXPL: 1CVE-2002-1671
https://notcve.org/view.php?id=CVE-2002-1671
Microsoft Internet Explorer 5.0, 5.01, and 5.5 allows remote attackers to monitor the contents of the clipboard via the getData method of the clipboardData object. • http://online.securityfocus.com/archive/1/250387/2002-10-11/2002-10-17/2 http://www.securityfocus.com/archive/1/250248 http://www.securityfocus.com/bid/3862 https://exchange.xforce.ibmcloud.com/vulnerabilities/7906 •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0CVE-2002-1670
https://notcve.org/view.php?id=CVE-2002-1670
Microsoft Windows XP Professional upgrade edition overwrites previously installed patches for Internet Explorer 6.0, leaving Internet Explorer unpatched. • http://online.securityfocus.com/archive/1/250596 http://www.securityfocus.com/bid/3887 https://exchange.xforce.ibmcloud.com/vulnerabilities/7922 •
CVSS: 5.0EPSS: 2%CPEs: 7EXPL: 4CVE-2002-2031 – Microsoft Internet Explorer 5 - JavaScript Local File Enumeration
https://notcve.org/view.php?id=CVE-2002-2031
Internet Explorer 5.0, 5.0.1 and 5.5 with JavaScript execution enabled allows remote attackers to determine the existence of arbitrary files via a script tag with a src parameter that references a non-JavaScript file, then using the onError event handler to monitor the results. • https://www.exploit-db.com/exploits/21198 https://www.exploit-db.com/exploits/21199 http://archives.neohapsis.com/archives/bugtraq/2002-01/0019.html http://www.iss.net/security_center/static/7784.php http://www.securityfocus.com/bid/3779 •