CVE-2006-3200
published 2006-06-23CVE-2006-3200: Unspecified versions of Internet Explorer allow remote attackers to cause a denial of service (crash) via an IFRAME with a src tag containing a "File://" URI…
PriorityP415medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
15.69%
96.4th percentile
Unspecified versions of Internet Explorer allow remote attackers to cause a denial of service (crash) via an IFRAME with a src tag containing a "File://" URI followed by an 8-bit character. NOTE: some third parties were unable to verify this issue.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | internet_explorer | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-93g8-jxg6-4j2g: Unspecified versions of Internet Explorer allow remote attackers to cause a denial of service (crash) via an IFRAME with a src tag containing a "File:
ghsa_unreviewed·2022-05-01
CVE-2006-3200 [MEDIUM] GHSA-93g8-jxg6-4j2g: Unspecified versions of Internet Explorer allow remote attackers to cause a denial of service (crash) via an IFRAME with a src tag containing a "File:
Unspecified versions of Internet Explorer allow remote attackers to cause a denial of service (crash) via an IFRAME with a src tag containing a "File://" URI followed by an 8-bit character. NOTE: some third parties were unable to verify this issue.
Cisco
Access Point Web-browser Interface Vulnerability
vendor_cisco·2006-06-28
CVE-2006-3291 Access Point Web-browser Interface Vulnerability
Access Point Web-browser Interface Vulnerability
The Cisco web-browser interface for Cisco access points and Cisco 3200
Series Wireless Mobile Interface Card (WMIC), contains a vulnerability that
could, under certain circumstances, remove the default security configuration
from the managed access point and allow administrative access without
validation of administrative user credentials.
Cisco has made free software available to address this vulnerability
for affected customers. There are workarounds available to mitigate the effects
of this vulnerability.
This advisory is posted at
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20060628-ap.
Cisco
Access Point Web-browser Interface Vulnerability
vendor_cisco
CVE-2006-3291 Access Point Web-browser Interface Vulnerability
CVE-2006-3291: Access Point Web-browser Interface Vulnerability
The Cisco web-browser interface for Cisco access points and Cisco 3200 Series Wireless Mobile Interface Card (WMIC), contains a vulnerability that could, under certain circumstances, remove the default security configuration from the managed access point and allow administrative access without validation of administrative user credentials. Cisco has made free software available to address this vulnerability for affected customers. There are
Bug IDs: CSCsd67403, CSCsf18032, CSCsd67403
No detection rules found.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2006-06/0074.htmlhttp://securityreason.com/securityalert/1132http://www.securityfocus.com/archive/1/436839/100/200/threadedhttp://www.securityfocus.com/archive/1/436889/100/200/threadedhttp://archives.neohapsis.com/archives/bugtraq/2006-06/0074.htmlhttp://securityreason.com/securityalert/1132http://www.securityfocus.com/archive/1/436839/100/200/threadedhttp://www.securityfocus.com/archive/1/436889/100/200/threaded
2006-06-23
Published