CVE-2001-0338

EPSS 1.67%
Published 27.06.2001 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Internet Explorer 5.5 and earlier does not properly validate digital certificates when Certificate Revocation List (CRL) checking is enabled, which could allow remote attackers to spoof trusted web sites, aka the "Server certificate validation vulnerability."

Affected products Warnungen 0 Metrics 2 CWE 0 References 7

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Internet Explorer Version <= 5.5

Microsoft ≫ Internet Explorer Version5.01

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.67%	0.804

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.1	4.9	6.4	AV:N/AC:H/Au:N/C:P/I:P/A:P

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-027

http://www.ciac.org/ciac/bulletins/l-087.shtml

http://www.securityfocus.com/bid/2735

https://exchange.xforce.ibmcloud.com/vulnerabilities/6555

https://nvd.nist.gov/vuln/detail/CVE-2001-0338

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2001-0338

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2001-0338

EUVD