CVE-2006-3640

Sažetak

Microsoft Internet Explorer 5.01 and 6 allows certain script to persist across navigations between pages, which allows remote attackers to obtain the window location of visited web pages in other domains or zones, aka "Window Location Information Disclosure Vulnerability."

Reference

http://secunia.com/advisories/21396
http://www.securityfocus.com/bid/19339
http://securitytracker.com/id?1016663
http://www.osvdb.org/27850
http://www.vupen.com/english/advisories/2006/3212
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A171
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-042

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

23-07-2021 - 12:18

Objavljeno

09-08-2006 - 00:04