CVE-2000-0156

Internet Explorer 4.x and 5.x - Unauthenticated Arbitrary File Access via Image Source Redirect

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0156. PoCs published by Georgi Guninski.

AI-analyzed exploit summary This exploit leverages a security zone settings lag in Internet Explorer, allowing remote JavaScript to execute with local zone privileges. It demonstrates reading local files by exploiting the timing difference between document load and security zone update.

Description

Internet Explorer 4.x and 5.x allows remote web servers to access files on the client that are outside of its security domain, aka the "Image Source Redirect" vulnerability.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Georgi Guninski · textremotewindows
https://www.exploit-db.com/exploits/19719

This exploit leverages a security zone settings lag in Internet Explorer, allowing remote JavaScript to execute with local zone privileges. It demonstrates reading local files by exploiting the timing difference between document load and security zone update.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Microsoft Internet Explorer 4.0, 5.0, 5.5 preview
No auth needed
Prerequisites: Victim must have a local file (e.g., C:\test.txt) · Victim must interact with the malicious link
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/3996
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/7827

Scores

EPSS 0.1283
EPSS Percentile 95.8%

Details

Status published
Products (4)
microsoft/internet_explorer 4.0
microsoft/internet_explorer 4.0.1
microsoft/internet_explorer 5.0
microsoft/internet_explorer 5.01
Published Feb 16, 2000
Tracked Since Feb 18, 2026