Microsoft: >> Internet Explorer >> 4.1 Security Vulnerabilities
Internet Explorer 5.01 and earlier allows a remote attacker to create a reference to a client window and use a server-side redirect to access local files via that window, aka "Server-side Page Reference Redirect."
CVSS Score
5.1
EPSS Score
0.036
Published
1999-12-08
By default, Internet Explorer 5.0 and other versions enables the "Navigate sub-frames across different domains" option, which allows frame spoofing.
CVSS Score
2.6
EPSS Score
0.009
Published
1999-11-01
Page 10