Lucene search
K

5 matches found

Check Point Advisories
Check Point Advisories
added 2010/02/24 12:0 a.m.27 views

Internet Explorer OnBeforeUnload JavaScript Address Bar Spoofing (MS07-057; CVE-2007-3826)

Microsoft Internet Explorer IE is a web browser application that is capable of rendering both static and dynamic web content. The application is primarily used for tasks related to web browsing, such as displaying HTML encoded pages, downloading files, etc. An address bar spoofing vulnerability...

9.3CVSS6AI score0.28739EPSS
Exploits1
Prion
Prion
added 2007/10/09 10:17 p.m.23 views

Code injection

Microsoft Internet Explorer 5.01 through 7 allows remote attackers to spoof the URL address bar and other "trust UI" components via unspecified vectors, a different issue than CVE-2007-1091 and CVE-2007-3826...

7.5CVSS6.6AI score0.28739EPSS
Exploits2References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2007/10/09 12:0 a.m.36 views

MS07-057: Cumulative Security Update for Internet Explorer (939653)

The remote host is missing the IE cumulative security update 939653. The remote version of IE is vulnerable to several flaws that could allow an attacker to execute arbitrary code on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid26963;...

9.3CVSS6.2AI score0.28739EPSS
Exploits3References5
NVD
NVD
added 2007/07/17 9:30 p.m.26 views

CVE-2007-3826

Microsoft Internet Explorer 7 on Windows XP SP2 allows remote attackers to prevent users from leaving a site, spoof the address bar, and conduct phishing and other attacks via repeated document.open function calls after a user requests a new page, but before the onBeforeUnload function is called...

9.3CVSS6.3AI score0.28739EPSS
Exploits1References13
CVE
CVE
added 2007/07/17 9:0 p.m.62 views

CVE-2007-3826

CVE-2007-3826 concerns Microsoft Internet Explorer 7 on Windows XP SP2. The issue enables address-bar spoofing via repeated document.open calls after user navigates to a new page but before onBeforeUnload runs, potentially allowing phishing-style deception. Connected sources identify this as one ...

9.3CVSS6.2AI score0.28739EPSS
Exploits1References13Affected Software1
Rows per page
Query Builder