7.5

CVE-2001-1325

Exploit

EPSS 13.84%
Published 20.04.2001 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Internet Explorer 5.0 and 5.5, and Outlook Express 5.0 and 5.5, allow remote attackers to execute scripts when Active Scripting is disabled by including the scripts in XML stylesheets (XSL) that are referenced using an IFRAME tag, possibly due to a vulnerability in Windows Scripting Host (WSH).

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Internet Explorer Version5.0

Microsoft ≫ Internet Explorer Version5.5

Microsoft ≫ Outlook Express Version5.0

Microsoft ≫ Outlook Express Version5.5

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	13.84%	0.937

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://www.securityfocus.com/archive/1/3AE02004.57FDF958%40guninski.com

http://www.securityfocus.com/bid/2633

Patch

Vendor Advisory

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/6448

https://nvd.nist.gov/vuln/detail/CVE-2001-1325

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2001-1325

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2001-1325

EUVD