CVE-2000-0982

high

Description

Internet Explorer before 5.5 forwards cached user credentials for a secure web site to insecure pages on the same web site, which could allow remote attackers to obtain the credentials by monitoring connections to the web server, aka the "Cached Web Credentials" vulnerability.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/5367

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-076

http://www.acrossecurity.com/aspr/ASPR-2000-07-22-2-PUB.txt

Details

Source: Mitre, NVD

Published: 2000-12-19

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 8.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

Severity: High

EPSS

EPSS: 0.10205