CVE-2000-0028

Internet Explorer 5.0-5.01 - CSRF

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0028. PoCs published by Georgi Guninski.

AI-analyzed exploit summary This exploit leverages the `window.external.NavigateAndFind()` function in older versions of Internet Explorer to execute arbitrary JavaScript in the local security context. By passing a `javascript:` URL, an attacker can access local files or sensitive data like cookies or the SAM database.

Description

Internet Explorer 5.0 and 5.01 allows remote attackers to bypass the cross frame security policy and read files via the external.NavigateAndFind function.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Georgi Guninski · textremotemultiple
https://www.exploit-db.com/exploits/19686

This exploit leverages the `window.external.NavigateAndFind()` function in older versions of Internet Explorer to execute arbitrary JavaScript in the local security context. By passing a `javascript:` URL, an attacker can access local files or sensitive data like cookies or the SAM database.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Microsoft Internet Explorer 4.0, 5.0, 5.0.1, 5.5, and for Unix 5.0
No auth needed
Prerequisites: Victim must be using a vulnerable version of Internet Explorer · Victim must visit a malicious webpage or open a malicious HTML email
MITRE ATT&CK
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1
Core References
Third Party Advisory, VDB Entry x_refsource_misc
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0028

Scores

EPSS 0.2313
EPSS Percentile 97.5%

Details

Status published
Products (11)
microsoft/ie 4.0 a_mac_os
microsoft/internet_explorer 3.0
microsoft/internet_explorer 3.0.2
microsoft/internet_explorer 3.1
microsoft/internet_explorer 3.2
microsoft/internet_explorer 4.0
microsoft/internet_explorer 4.0.1 sp2
microsoft/internet_explorer 4.1
microsoft/internet_explorer 4.5
microsoft/internet_explorer 5.0
... and 1 more
Published Dec 23, 1999
Tracked Since Feb 18, 2026