Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2006-1192

Microsoft Internet Explorer 5.01 through 6 allows remote attackers to conduct phishing attacks by spoofing the address bar and other parts of the trust UI via unknown methods that allow "window content to persist" after the user has navigated to another site, aka the "Address Bar Spoofing Vulnerability." NOTE: this is a different vulnerability than CVE-2006-1626.

Published

2006-04-11T23:02:00.000

Last Modified

2025-04-03T01:03:51.193

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 2.6 (LOW)

CVSSv2 Vector

AV:N/AC:H/Au:N/C:N/I:P/A:N

  • Access Vector: NETWORK
  • Access Complexity: HIGH
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: PARTIAL
  • Availability Impact: NONE
Exploitability Score

4.9

Impact Score

2.9

Weaknesses
  • Type: Primary
    CWE-20
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application microsoft ie 5.01 Yes
Application microsoft ie 6 Yes
Application microsoft ie 6 Yes
Application microsoft ie 6 Yes
Application microsoft ie 6 Yes
Application microsoft ie 6 Yes
Application microsoft ie 6 Yes
Application microsoft internet_explorer 6 Yes
Hardware canon network_camera_server_vb101 * Yes
References