7.5

CVE-2000-0982

Exploit
Internet Explorer before 5.5 forwards cached user credentials for a secure web site to insecure pages on the same web site, which could allow remote attackers to obtain the credentials by monitoring connections to the web server, aka the "Cached Web Credentials" vulnerability.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftInternet Explorer Version4.0
MicrosoftInternet Explorer Version4.0.1
MicrosoftInternet Explorer Version4.1
MicrosoftInternet Explorer Version5.0
MicrosoftInternet Explorer Version5.01
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 12.61% 0.957
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.acrossecurity.com/aspr/ASPR-2000-07-22-2-PUB.txt
http://www.securityfocus.com/bid/1793
Patch
Vendor Advisory
Exploit
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-076
https://exchange.xforce.ibmcloud.com/vulnerabilities/5367