Lucene search

[email protected]NVD:CVE-2006-6984

HistoryFeb 09, 2007 - 1:28 a.m.

CVE-2006-6984

2007-02-0901:28:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

5.9

Confidence

Low

EPSS

0.935

Percentile

99.1%

JSON

Cross-domain vulnerability in GreenBrowser 3.4.0622 allows remote attackers to access restricted information from other domains via an object tag with a data parameter that references a link on the attacker’s originating site that specifies a Location HTTP header that references the target site, which then makes that content available through the outerHTML attribute of the object, a similar vulnerability to CVE-2006-3280.

Affected configurations

Nvd

Node

more_quick_toolsgreenbrowserMatch3.4.0622

VendorProductVersionCPE
more_quick_toolsgreenbrowser3.4.0622cpe:2.3:a:more_quick_tools:greenbrowser:3.4.0622:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
more_quick_tools	greenbrowser	3.4.0622	cpe:2.3:a:more_quick_tools:greenbrowser:3.4.0622:::::::*

References

pridels0.blogspot.com/2006/06/multiple-browsers-information.html

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

5.9

Confidence

Low

EPSS

0.935

Percentile

99.1%

JSON

Related for NVD:CVE-2006-6984

cvelist11 cve11 exploitdb1 nvd10 checkpoint_advisories1 cert1 securityvulns2 nessus1