Internet Explorer 6 for Windows XP SP2 and earlier allows remote attackers to spoof the address bar and possibly conduct phishing attacks by re-opening the window to a malicious Shockwave Flash application, then changing the window location back to a trusted URL while the Flash application is still loading. NOTE: this is a different vulnerability than CVE-2006-1192.
References
Configurations
Configuration 1 (hide)
AND |
|
History
23 Jul 2021, 12:55
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:* |
Information
Published : 2006-04-05 10:04
Updated : 2024-02-04 16:52
NVD link : CVE-2006-1626
Mitre link : CVE-2006-1626
CVE.ORG link : CVE-2006-1626
JSON object : View
Products Affected
microsoft
- windows_xp
- internet_explorer
CWE
CWE-20
Improper Input Validation