CVE-2000-0266

CVSS 2.0 Score 2.6 of 10 (low)

Details

Published Apr 18, 2000
Updated: Nov 7, 2023

Summary

CVE-2000-0266 is a vulnerability in Internet Explorer 5.01, which allows remote attackers to bypass the cross frame security policy. They can achieve this by utilizing a malicious applet that interacts with the Java JSObject, enabling them to modify the DOM properties and set an IFRAME to an arbitrary Javascript URL. This vulnerability poses a significant risk as it allows attackers to execute unauthorized code and potentially gain unauthorized access to sensitive information. Attackers can exploit this flaw through specially crafted web pages, making it essential for users to update their browsers or implement additional security measures to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Internet Explorer

Affected Vendors

  • Microsoft