Vulnerability Details CVE-2000-0518
Internet Explorer 4.x and 5.x does not properly verify all contents of an SSL certificate if a connection is made to the server via an image or a frame, aka one of two different "SSL Certificate Validation" vulnerabilities.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.022
EPSS Ranking 83.6%
CVSS Severity
CVSS v2 Score 2.6
References
- http://www.acrossecurity.com/aspr/ASPR-1999-12-15-1-PUB.txt
- http://www.cert.org/advisories/CA-2000-10.html
- http://www.securityfocus.com/bid/1309
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-039
- https://exchange.xforce.ibmcloud.com/vulnerabilities/4624
- http://www.acrossecurity.com/aspr/ASPR-1999-12-15-1-PUB.txt
- http://www.cert.org/advisories/CA-2000-10.html
- http://www.securityfocus.com/bid/1309
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-039
- https://exchange.xforce.ibmcloud.com/vulnerabilities/4624
Products affected by CVE-2000-0518
-
cpe:2.3:a:microsoft:ie:4.0
-
cpe:2.3:a:microsoft:ie:4.0.1
-
cpe:2.3:a:microsoft:ie:5
-
cpe:2.3:a:microsoft:ie:5.0
-
cpe:2.3:a:microsoft:ie:5.0.1
-
cpe:2.3:a:microsoft:internet_explorer:4.0