CVE-2001-1325

Internet Explorer 5.0-5.5 and Outlook Express 5.0-5.5 - Remote Code Execution via XSL Scripts in IFRAME

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-1325. PoCs published by Georgi Guninski.

AI-analyzed exploit summary This exploit demonstrates a vulnerability in Internet Explorer and Outlook Express where script execution is allowed via XML stylesheets even when active scripting is disabled. The PoC uses an IFRAME to load an external XML file containing malicious scripts.

Description

Internet Explorer 5.0 and 5.5, and Outlook Express 5.0 and 5.5, allow remote attackers to execute scripts when Active Scripting is disabled by including the scripts in XML stylesheets (XSL) that are referenced using an IFRAME tag, possibly due to a vulnerability in Windows Scripting Host (WSH).

Exploits (1)

exploitdb WORKING POC VERIFIED
by Georgi Guninski · remotewindows
https://www.exploit-db.com/exploits/20782

This exploit demonstrates a vulnerability in Internet Explorer and Outlook Express where script execution is allowed via XML stylesheets even when active scripting is disabled. The PoC uses an IFRAME to load an external XML file containing malicious scripts.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Internet Explorer and Outlook Express (versions affected by CVE-2001-1325)
No auth needed
Prerequisites: Active scripting disabled in all security zones · Victim to open the malicious email or visit the crafted webpage
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/6448
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/2633
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/3AE02004.57FDF958%40guninski.com

Scores

EPSS 0.2729
EPSS Percentile 97.8%

Details

Status published
Products (4)
microsoft/internet_explorer 5.0
microsoft/internet_explorer 5.5
microsoft/outlook_express 5.0
microsoft/outlook_express 5.5
Published Apr 20, 2001
Tracked Since Feb 18, 2026