5 matches found
Internet Explorer OnBeforeUnload JavaScript Address Bar Spoofing (MS07-057; CVE-2007-3826)
Microsoft Internet Explorer IE is a web browser application that is capable of rendering both static and dynamic web content. The application is primarily used for tasks related to web browsing, such as displaying HTML encoded pages, downloading files, etc. An address bar spoofing vulnerability...
Code injection
Microsoft Internet Explorer 5.01 through 7 allows remote attackers to spoof the URL address bar and other "trust UI" components via unspecified vectors, a different issue than CVE-2007-1091 and CVE-2007-3826...
MS07-057: Cumulative Security Update for Internet Explorer (939653)
The remote host is missing the IE cumulative security update 939653. The remote version of IE is vulnerable to several flaws that could allow an attacker to execute arbitrary code on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid26963;...
CVE-2007-3826
Microsoft Internet Explorer 7 on Windows XP SP2 allows remote attackers to prevent users from leaving a site, spoof the address bar, and conduct phishing and other attacks via repeated document.open function calls after a user requests a new page, but before the onBeforeUnload function is called...
CVE-2007-3826
CVE-2007-3826 concerns Microsoft Internet Explorer 7 on Windows XP SP2. The issue enables address-bar spoofing via repeated document.open calls after user navigates to a new page but before onBeforeUnload runs, potentially allowing phishing-style deception. Connected sources identify this as one ...