CVE-2006-4092

2006-08-1110:00:00

mitre

www.cve.org

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Simpliciti Locked Browser does not properly limit a user’s actions to ones within the intended Internet Explorer environment, which allows local users to perform unauthorized actions by visiting a web site that executes a JavaScript window.blur loop to remove focus from the browser window, then pressing CTRL-SHIFT-ESC to invoke the Task Manager.

References

secunia.com/advisories/21321

securityreason.com/securityalert/1365

www.securityfocus.com/archive/1/442058/100/100/threaded

www.securityfocus.com/archive/1/444026/100/100/threaded

www.securityfocus.com/bid/19304

exchange.xforce.ibmcloud.com/vulnerabilities/28224