Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1192

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2006-1192
Last Modified 03 Oct 2011 12:00:00
Published 11 Apr 2006 07:02:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-1192

Summary

Microsoft Internet Explorer 5.01 through 6 allows remote attackers to conduct phishing attacks by spoofing the address bar and other parts of the trust UI via unknown methods that allow "window content to persist" after the user has navigated to another site, aka the "Address Bar Spoofing Vulnerability." NOTE: this is a different vulnerability than CVE-2006-1626.

Vulnerable Systems

Application

  • Microsoft Ie 5.01

  • Microsoft Ie 6


References

BID - 17460

MS - MS06-013

SECTRACK - 1015899

SECUNIA - 18957

XF - ie-browser-window-spoofing(25557)

VUPEN - ADV-2006-1318

SREASON - 670


Last Updated: 27 May 2016 10:41:58