CVSS: 7.5EPSS: 13%CPEs: 4EXPL: 0CVE-2001-0091
https://notcve.org/view.php?id=CVE-2001-0091
16 Feb 2001 — The ActiveX control for invoking a scriptlet in Internet Explorer 5.0 through 5.5 renders arbitrary file types instead of HTML, which allows an attacker to read arbitrary files, aka a variant of the "Scriptlet Rendering" vulnerability. • http://www.osvdb.org/7820 •
CVSS: 2.6EPSS: 18%CPEs: 3EXPL: 0CVE-2001-0092
https://notcve.org/view.php?id=CVE-2001-0092
16 Feb 2001 — A function in Internet Explorer 5.0 through 5.5 does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client files, aka a new variant of the "Frame Domain Verification" vulnerability. • http://www.osvdb.org/7817 •
CVSS: 7.5EPSS: 12%CPEs: 4EXPL: 0CVE-2000-0767
https://notcve.org/view.php?id=CVE-2000-0767
13 Oct 2000 — The ActiveX control for invoking a scriptlet in Internet Explorer 4.x and 5.x renders arbitrary file types instead of HTML, which allows an attacker to read arbitrary files, aka the "Scriptlet Rendering" vulnerability. • http://www.securityfocus.com/bid/1564 •
CVSS: 2.6EPSS: 16%CPEs: 9EXPL: 0CVE-2000-0768
https://notcve.org/view.php?id=CVE-2000-0768
13 Oct 2000 — A function in Internet Explorer 4.x and 5.x does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client files, aka a variant of the "Frame Domain Verification" vulnerability. • http://www.securityfocus.com/bid/1564 •
CVSS: 7.5EPSS: 28%CPEs: 2EXPL: 0CVE-2000-0662
https://notcve.org/view.php?id=CVE-2000-0662
14 Jul 2000 — Internet Explorer 5.x and Microsoft Outlook allows remote attackers to read arbitrary files by redirecting the contents of an IFRAME using the DHTML Edit Control (DHTMLED). • http://www.securityfocus.com/bid/1474 •
CVSS: 2.6EPSS: 11%CPEs: 4EXPL: 0CVE-2000-0503
https://notcve.org/view.php?id=CVE-2000-0503
06 Jun 2000 — The IFRAME of the WebBrowser control in Internet Explorer 5.01 allows a remote attacker to violate the cross frame security policy via the NavigateComplete2 event. • http://archives.neohapsis.com/archives/win2ksecadvice/2000-q2/0154.html •
CVSS: 5.1EPSS: 18%CPEs: 4EXPL: 1CVE-2000-0465 – Microsoft Internet Explorer 4.0/5.0/5.5 preview/5.0.1 - DocumentComplete() Cross Frame Access
https://notcve.org/view.php?id=CVE-2000-0465
17 May 2000 — Internet Explorer 4.x and 5.x does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client files via the frame, aka the "Frame Domain Verification" vulnerability. • https://www.exploit-db.com/exploits/19939 •
CVSS: 10.0EPSS: 16%CPEs: 5EXPL: 1CVE-2000-0061 – Microsoft Internet Explorer 4.0/4.0.1/5.0/5.0.1/5.5 - preview Security Zone Settings Lag
https://notcve.org/view.php?id=CVE-2000-0061
07 Jan 2000 — Internet Explorer 5 does not modify the security zone for a document that is being loaded into a window until after the document has been loaded, which could allow remote attackers to execute Javascript in a different security context while the document is loading. • https://www.exploit-db.com/exploits/19719 •