Published: 31/12/2004 Updated: 19/10/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Microsoft Internet Explorer 6.0 SP2 allows remote malicious users to spoof a legitimate URL in the status bar and conduct a phishing attack via a web page that contains a BASE element that points to the legitimate site, followed by an anchor (a) element with an empty "href" attribute, and a FORM whose action points to a malicious URL, and an INPUT submit element that is modified to look like a legitimate URL.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft ie 6.0

source: wwwsecurityfocuscom/bid/11565/info Microsoft Internet Explorer is reported prone to a URI obfuscation weakness The issue is due to a failure of the affected application to properly handle specially crafted HTML anchor URI tags and various form tags This issue may be leveraged by an attacker to display false information in the s ...

NVD-CWE-Other http://www.securityfocus.com/bid/11565 http://www.kb.cert.org/vuls/id/702086 http://www.securityfocus.com/archive/1/379903 http://secunia.com/advisories/11273 https://exchange.xforce.ibmcloud.com/vulnerabilities/17938 http://www.securityfocus.com/archive/1/425883/100/0/threaded http://www.securityfocus.com/archive/1/425386/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/24714/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-1104

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect