CVE-2006-1192

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2006-1192
Microsoft Internet Explorer 5.01 through 6 allows remote attackers to conduct phishing attacks by spoofing the address bar and other parts of the trust UI via unknown methods that allow "window content to persist" after the user has navigated to another site, aka the "Address Bar Spoofing Vulnerability." NOTE: this is a different vulnerability than CVE-2006-1626.

2.6 /10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:H/Au:N/C:N/I:P/A:N

Exploitability : 4.9 / Impact : 2.9

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References
Link Resource
http://secunia.com/advisories/18957 Patch Vendor Advisory
http://securityreason.com/securityalert/670
http://securitytracker.com/id?1015899 Patch
http://www.securityfocus.com/bid/17460 Patch
http://www.vupen.com/english/advisories/2006/1318 Vendor Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-013
https://exchange.xforce.ibmcloud.com/vulnerabilities/25557
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1336
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1498
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1645
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1725
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1740
http://secunia.com/advisories/18957 Patch Vendor Advisory
http://securityreason.com/securityalert/670
http://securitytracker.com/id?1015899 Patch
http://www.securityfocus.com/bid/17460 Patch
http://www.vupen.com/english/advisories/2006/1318 Vendor Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-013
https://exchange.xforce.ibmcloud.com/vulnerabilities/25557
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1336
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1498
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1645
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1725
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1740
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:ie:5.01:windows_2000_sp4:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6:*:windows_xp_professional_64bit:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6:sp1:windows_xpsp1:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6:windows_2000_sp4:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6:windows_server_2003_sp1:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6:windows_server_2003_sp1_itanium_systems:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:6:windows_xp_sp2:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_explorer:6:sp1:*:*:*:*:*:*
cpe:2.3:h:canon:network_camera_server_vb101:*:*:*:*:*:*:*:*
History

No history.

Information

Published : 2006-04-11 23:02

Updated : 2025-04-03 01:03

NVD link : CVE-2006-1192

Mitre link : CVE-2006-1192

CVE.ORG link : CVE-2006-1192

JSON object : View

Products Affected

microsoft

  • ie
  • internet_explorer

canon

  • network_camera_server_vb101
CWE
CWE-20

Improper Input Validation