4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
8 High
AI Score
Confidence
High
0.512 Medium
EPSS
Percentile
97.6%
Argument injection vulnerability in Microsoft Internet Explorer, when running on systems with SeaMonkey installed and certain URIs registered, allows remote attackers to conduct cross-browser scripting attacks and execute arbitrary commands via shell metacharacters in a mailto URI, which are inserted into the command line that is created when invoking SeaMonkey.exe, a related issue to CVE-2007-3670.
CPE | Name | Operator | Version |
---|---|---|---|
microsoft:internet_explorer | microsoft internet explorer | eq | * |
mozilla:seamonkey | mozilla seamonkey | eq | * |