CVE-2001-0338

EPSS 1.67%
Veröffentlicht 27.06.2001 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Internet Explorer 5.5 and earlier does not properly validate digital certificates when Certificate Revocation List (CRL) checking is enabled, which could allow remote attackers to spoof trusted web sites, aka the "Server certificate validation vulnerability."

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Internet Explorer Version <= 5.5

Microsoft ≫ Internet Explorer Version5.01

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.67%	0.804

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.1	4.9	6.4	AV:N/AC:H/Au:N/C:P/I:P/A:P

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-027

http://www.ciac.org/ciac/bulletins/l-087.shtml

http://www.securityfocus.com/bid/2735

https://exchange.xforce.ibmcloud.com/vulnerabilities/6555

https://nvd.nist.gov/vuln/detail/CVE-2001-0338

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2001-0338

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2001-0338

EUVD