CVE-2000-0982

Internet Explorer before 5.5 forwards cached user credentials for a secure web site to insecure pages on the same web site, which could allow remote attackers to obtain the credentials by monitoring connections to the web server, aka the "Cached Web Credentials" vulnerability.

Published: Dec 19, 2000
Updated: Apr 13, 2023
CVE: CVE-2000-0982
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / internet_explorer	5.01	5.01.x
microsoft / internet_explorer	4.0	4.0.x
microsoft / internet_explorer	4.0.1	4.0.1.x
microsoft / internet_explorer	4.1	4.1.x
microsoft / internet_explorer	5.0	5.0.x

http://www.acrossecurity.com/aspr/ASPR-2000-07-22-2-PUB.txt
http://www.securityfocus.com/bid/1793
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-076
https://exchange.xforce.ibmcloud.com/vulnerabilities/5367

Vulnerability Database

289,599

CVE-2000-0982