Lucene search

[email protected]NVD:CVE-2006-3640

HistoryAug 09, 2006 - 12:04 a.m.

CVE-2006-3640

2006-08-0900:04:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.3

Confidence

Low

EPSS

0.717

Percentile

98.1%

JSON

Microsoft Internet Explorer 5.01 and 6 allows certain script to persist across navigations between pages, which allows remote attackers to obtain the window location of visited web pages in other domains or zones, aka “Window Location Information Disclosure Vulnerability.”

Affected configurations

Nvd

Node

microsoftieMatch6windows_server_2003_sp1

microsoftinternet_explorerMatch5.01

VendorProductVersionCPE
microsoftie6cpe:2.3:a:microsoft:ie:6:windows_server_2003_sp1:*:*:*:*:*:*
microsoftinternet_explorer5.01cpe:2.3:a:microsoft:internet_explorer:5.01:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	ie	6	cpe:2.3:a:microsoft:ie:6:windows_server_2003_sp1::::::
microsoft	internet_explorer	5.01	cpe:2.3:a:microsoft:internet_explorer:5.01:::::::*

References

secunia.com/advisories/21396

securitytracker.com/id?1016663

www.osvdb.org/27850

www.securityfocus.com/bid/19339

www.vupen.com/english/advisories/2006/3212

docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-042

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A171

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.3

Confidence

Low

EPSS

0.717

Percentile

98.1%

JSON

Related for NVD:CVE-2006-3640

cve1 cvelist1 securityvulns1 nessus1