Unrated severityNVD Advisory· Published May 2, 2005· Updated Jun 16, 2026
CVE-2005-0056
CVE-2005-0056
Description
Internet Explorer 5.01, 5.5, and 6 does not properly validate certain URLs in Channel Definition Format (CDF) files, which allows remote attackers to obtain sensitive information or execute arbitrary code, aka the "Channel Definition Format (CDF) Cross Domain Vulnerability."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:microsoft:internet_explorer:5.01:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:microsoft:internet_explorer:5.01:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:*
- (no CPE)range: 5.01, 5.5, 6
Patches
Vulnerability mechanics
References
11- www.kb.cert.org/vuls/id/823971nvdPatchUS Government Resource
- www.us-cert.gov/cas/techalerts/TA05-039A.htmlnvdPatchUS Government Resource
- www.securityfocus.com/bid/12427nvdExploitPatch
- securitytracker.com/idnvd
- docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-014nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/19137nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2385nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2817nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3318nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4085nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4947nvd
News mentions
0No linked articles in our index yet.