Vulnerability Description
Microsoft Internet Explorer 5.01 through 6 allows remote attackers to conduct phishing attacks by spoofing the address bar and other parts of the trust UI via unknown methods that allow "window content to persist" after the user has navigated to another site, aka the "Address Bar Spoofing Vulnerability." NOTE: this is a different vulnerability than CVE-2006-1626.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Ie | 5.01 |
| Microsoft | Internet Explorer | 6 |
| Canon | Network Camera Server Vb101 | All versions |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/18957PatchVendor Advisory
- http://securityreason.com/securityalert/670
- http://securitytracker.com/id?1015899Patch
- http://www.securityfocus.com/bid/17460Patch
- http://www.vupen.com/english/advisories/2006/1318Vendor Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-01
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25557
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://secunia.com/advisories/18957PatchVendor Advisory
- http://securityreason.com/securityalert/670
- http://securitytracker.com/id?1015899Patch
FAQ
What is CVE-2006-1192?
CVE-2006-1192 is a vulnerability with a CVSS score of 2.6 (LOW). Microsoft Internet Explorer 5.01 through 6 allows remote attackers to conduct phishing attacks by spoofing the address bar and other parts of the trust UI via unknown methods that allow "window conten...
How severe is CVE-2006-1192?
CVE-2006-1192 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-1192?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Ie, Microsoft Internet Explorer, Canon Network Camera Server Vb101.