CVE-2005-2274 — Microsoft Internet Explorer vulnerability

2 documents2 sources

Severity

2.6LOWNVD

EPSS

22.1%

top 4.19%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Internet Explorer

Timeline

PublishedJul 13

Latest updateMay 1

Description

Microsoft Internet Explorer 6.0 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."

CVSS vector

AV:N/AC:H/C:N/I:P/A:NExploitability: 4.9 | Impact: 2.9

Affected Packages1 packages

▶NVDmicrosoft/internet_explorer6.0

🔴Vulnerability Details

GHSA

GHSA-5v32-c9r7-7rcp: Microsoft Internet Explorer 6↗2022-05-01

▶