CVE-2006-1191

Properties

Published:
10.04.2006
Updated:
16.10.2006
Patch available:
Severity:
Low
  • CVSS vector:
    (AV:R/AC:H/Au:NR/C:P/I:P/A:N/B:N)
    Product:
    Microsoft: Internet Explorer
    Microsoft: Internet Explorer
    Microsoft: Internet Explorer
    Microsoft: Internet Explorer

    Vulnerability description

    Microsoft Internet Explorer 5.01 through 6 does not always correctly identify the domain that is associated with a browser window, which allows remote attackers to obtain sensitive cross-domain information and spoof sites by running script after the user has navigated to another site.

    References:

    MS:http://www.microsoft.com/technet/security/bulletin/ms06-013.mspx