CVE-2002-1187
CVSS6.8
发布时间 :2002-12-11 00:00:00
修订时间 :2016-10-17 22:24:31
NMCOES    

[原文]Cross-site scripting vulnerability (XSS) in Internet Explorer 5.01 through 6.0 allows remote attackers to read and execute files on the local system via web pages using the <frame> or <iframe> element and javascript, aka "Frames Cross Site Scripting," as demonstrated using the PrivacyPolicy.dlg resource.


[CNNVD]Microsoft Internet Explorer IFrame/Frame执行跨站脚本漏洞(CNNVD-200212-023)

        Internet Explorer 5.01至6.0版本存在跨站脚本(XSS)漏洞。远程攻击者可以借助web页面使用并执行或