Vulnerability Details CVE-2000-0982
Internet Explorer before 5.5 forwards cached user credentials for a secure web site to insecure pages on the same web site, which could allow remote attackers to obtain the credentials by monitoring connections to the web server, aka the "Cached Web Credentials" vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.102
EPSS Ranking 92.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://www.acrossecurity.com/aspr/ASPR-2000-07-22-2-PUB.txt
- http://www.securityfocus.com/bid/1793
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-076
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5367
- http://www.acrossecurity.com/aspr/ASPR-2000-07-22-2-PUB.txt
- http://www.securityfocus.com/bid/1793
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-076
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5367
Products affected by CVE-2000-0982
-
cpe:2.3:a:microsoft:internet_explorer:4.0
-
cpe:2.3:a:microsoft:internet_explorer:4.0.1
-
cpe:2.3:a:microsoft:internet_explorer:4.1
-
cpe:2.3:a:microsoft:internet_explorer:5.0
-
cpe:2.3:a:microsoft:internet_explorer:5.01