Lucene search
K

6 matches found

NVD
NVD
added 2008/10/29 3:31 p.m.25 views

CVE-2008-4787

Visual truncation vulnerability in Microsoft Internet Explorer 6 allows remote attackers to spoof the address bar via a URL with a hostname containing many Non-Blocking Space character sequences, which are rendered as whitespace, aka MSRC ticket MSRC7899, a related issue to CVE-2003-1025...

5.8CVSS6.3AI score0.1362EPSS
Exploits1References4
Prion
Prion
added 2008/10/29 3:31 p.m.31 views

Design/Logic Flaw

Visual truncation vulnerability in Microsoft Internet Explorer 6 allows remote attackers to spoof the address bar via a URL with a hostname containing many Non-Blocking Space character sequences, which are rendered as whitespace, aka MSRC ticket MSRC7899, a related issue to CVE-2003-1025...

5.8CVSS6.6AI score0.26912EPSS
Exploits2References4Affected Software1
Cvelist
Cvelist
added 2008/10/29 3:0 p.m.30 views

CVE-2008-4787

Visual truncation vulnerability in Microsoft Internet Explorer 6 allows remote attackers to spoof the address bar via a URL with a hostname containing many Non-Blocking Space character sequences, which are rendered as whitespace, aka MSRC ticket MSRC7899, a related issue to CVE-2003-1025...

7.4AI score0.1362EPSS
Exploits1References4
CVE
CVE
added 2008/10/29 3:0 p.m.48 views

CVE-2008-4787

CVE-2008-4787 describes a visual truncation/address-bar spoofing issue in Microsoft Internet Explorer 6. The vulnerability occurs when a hostname contains many characters, which render as whitespace, enabling a page to appear at a different address than its actual content. The entry cites MSRC789...

5.8CVSS6.3AI score0.1362EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2004/01/20 5:0 a.m.28 views

CVE-2003-1025

Internet Explorer 5.01 through 6 SP1 allows remote attackers to spoof the domain of a URL via a "%01" character before an @ sign in the user@domain portion of the URL, which hides the rest of the URL, including the real site, in the address bar, aka the "Improper URL Canonicalization Vulnerabilit...

4.3CVSS6.3AI score0.26912EPSS
Exploits1References13
CVE
CVE
added 2004/01/06 5:0 a.m.64 views

CVE-2003-1025

CVE-2003-1025 involves Internet Explorer 5.01–6 SP1 and is caused by an improper URL canonicalization in the HTTP URL parsing, enabling remote spoofing of the address bar with a specially crafted URL (example: a %01 before an @ sign). The vulnerability could let a malicious page display a false a...

4.3CVSS7.4AI score0.26912EPSS
Exploits1References13Affected Software1
Rows per page
Query Builder