CVE-2002-0027

N/A Unknown

Published: March 08, 2002 Modified: April 16, 2026

Description

Internet Explorer 5.5 and 6.0 allows remote attackers to read certain files and spoof the URL in the address bar by using the Document.open function to pass information between two frames from different domains, a new variant of the "Frame Domain Verification" vulnerability described in MS:MS01-058/CAN-2001-0874.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://www.osvdb.org/3031

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/246522

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/3721

Source: cve@mitre.org

Exploit Patch Vendor Advisory

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-005

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A974

Source: cve@mitre.org

http://www.osvdb.org/3031

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/246522

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/3721

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit Patch Vendor Advisory

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-005

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A974

Source: af854a3a-2127-422b-91ae-364da2661108

10 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

Exploitation Status

Not in CISA KEV

Affected Vendors

microsoft