Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2274

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2005-2274
Last Modified 05 Sep 2008 04:51:21
Published 13 Jul 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2005-2274

Summary

Microsoft Internet Explorer 6.0 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."

Vulnerable Systems

Application

  • Microsoft Ie 6.0


References

MISC - http://www.microsoft.com/technet/security/advisory/902333.mspx

MISC - http://secunia.com/secunia_research/2005-9/advisory/

MISC - http://secunia.com/multiple_browsers_dialog_origin_vulnerability_test/

SECUNIA - 15492

SECUNIA - 15491


Last Updated: 27 May 2016 10:40:28