6 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.077 Low
EPSS
Percentile
94.2%
Microsoft Internet Explorer 6 and earlier allows remote attackers to obtain sensitive information via unspecified uses of the OBJECT HTML tag, which discloses the absolute path of the corresponding TIF folder, aka βTIF Folder Information Disclosure Vulnerability,β and a different issue than CVE-2006-5578.
CPE | Name | Operator | Version |
---|---|---|---|
microsoft:ie | microsoft ie | le | 6 |
secunia.com/advisories/23288
securitytracker.com/id?1017374
www.osvdb.org/30816
www.securityfocus.com/archive/1/454969/100/200/threaded
www.securityfocus.com/bid/21507
www.us-cert.gov/cas/techalerts/TA06-346A.html
www.vupen.com/english/advisories/2006/4966
docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-072
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A313