CVE-2001-1325
First published: Fri Apr 20 2001(Updated: )
Internet Explorer 5.0 and 5.5, and Outlook Express 5.0 and 5.5, allow remote attackers to execute scripts when Active Scripting is disabled by including the scripts in XML stylesheets (XSL) that are referenced using an IFRAME tag, possibly due to a vulnerability in Windows Scripting Host (WSH).
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Outlook Express | =5.0 | |
| Microsoft Outlook Express | =5.5 | |
| Microsoft Internet Explorer | =5.0 | |
| Microsoft Internet Explorer | =5.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- collector/nvd-api
- agent/references
- agent/weakness
- agent/author
- agent/severity
- agent/description
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/remedy
- agent/event
- agent/type
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/microsoft
- canonical/microsoft outlook express
- version/microsoft outlook express/5.0
- version/microsoft outlook express/5.5
- canonical/microsoft internet explorer
- version/microsoft internet explorer/5.0
- version/microsoft internet explorer/5.5