VYPR
Unrated severityNVD Advisory· Published Apr 20, 2001· Updated Jun 16, 2026

CVE-2001-1325

CVE-2001-1325

Description

Internet Explorer 5.0 and 5.5, and Outlook Express 5.0 and 5.5, allow remote attackers to execute scripts when Active Scripting is disabled by including the scripts in XML stylesheets (XSL) that are referenced using an IFRAME tag, possibly due to a vulnerability in Windows Scripting Host (WSH).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • cpe:2.3:a:microsoft:internet_explorer:5.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:microsoft:internet_explorer:5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:*
    • (no CPE)range: 5.0, 5.5
  • cpe:2.3:a:microsoft:outlook_express:5.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:microsoft:outlook_express:5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:outlook_express:5.5:*:*:*:*:*:*:*
    • (no CPE)range: 5.0, 5.5

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.