CVE-2006-3227
published 2006-06-26CVE-2006-3227: Interpretation conflict between Internet Explorer and other web browsers such as Mozilla, Opera, and Firefox might allow remote attackers to modify the visual…
PriorityP263low2.6CVSS 2.0
AVNACHAuNCNIPAN
ITWVulnCheck KEV
Exploited in the wild
EPSS
13.53%
96.0th percentile
Interpretation conflict between Internet Explorer and other web browsers such as Mozilla, Opera, and Firefox might allow remote attackers to modify the visual presentation of web pages and possibly bypass protection mechanisms such as content filters via ASCII characters with the 8th bit set, which could be stripped by Internet Explorer to render legible text, but not when using other browsers. NOTE: there has been significant discussion about this issue, and as of 20060625, it is not clear where the responsibility for this issue lies, although it might be due to vagueness within the associated standards. NOTE: this might only be exploitable with certain encodings.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | internet_explorer | — | — |
CVSS provenance
nvdv2.02.6LOWAV:N/AC:H/Au:N/C:N/I:P/A:N
vulncheck2.6LOW
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-4mpw-2952-v468: Interpretation conflict between Internet Explorer and other web browsers such as Mozilla, Opera, and Firefox might allow remote attackers to modify th
ghsa_unreviewed·2022-05-01
CVE-2006-3227 [LOW] GHSA-4mpw-2952-v468: Interpretation conflict between Internet Explorer and other web browsers such as Mozilla, Opera, and Firefox might allow remote attackers to modify th
Interpretation conflict between Internet Explorer and other web browsers such as Mozilla, Opera, and Firefox might allow remote attackers to modify the visual presentation of web pages and possibly bypass protection mechanisms such as content filters via ASCII characters with the 8th bit set, which could be stripped by Internet Explorer to render legible text, but not when using other browsers. NOTE: there has been significant discussion about this issue, and as of 20060625, it is not clear where the responsibility for this issue lies, although it might be due to vagueness within the associated standards. NOTE: this might only be exploitable with certain encodings.
VulnCheck
Microsoft Internet Explorer ASCII encoded Web filter bypass
vulncheck·2006·CVSS 2.6
CVE-2006-3227 [LOW] Microsoft Internet Explorer ASCII encoded Web filter bypass
Microsoft Internet Explorer ASCII encoded Web filter bypass
Interpretation conflict between Internet Explorer and other web browsers such as Mozilla, Opera, and Firefox might allow remote attackers to modify the visual presentation of web pages and possibly bypass protection mechanisms such as content filters via ASCII characters with the 8th bit set, which could be stripped by Internet Explorer to render legible text, but not when using other browsers. NOTE: there has been significant discussion about this issue, and as of 20060625, it is not clear where the responsibility for this issue lies, although it might be due to vagueness within the associated standards. NOTE: this might only be exploitable with certain encodings.
Affected: Microsoft Internet Explorer
Required Action: Apply re
No detection rules found.
No public exploits indexed.
Qualys
US-CERT: Top 30 Vulnerabilities | Qualys
blogs_qualys·2015-05-01·CVSS 2.6
[LOW] US-CERT: Top 30 Vulnerabilities | Qualys
On April 29, 2015 US-CERT published TA15-119A which describes the Top 30 vulnerabilities that critical infrastructure organizations should focus on because they are under attack all the time. The list contains Windows, Internet Explorer, Adobe Software from Reader, Flash to Cold Fusion, Java from Oracle and others and is quite similar to the more generic set of software packages published by the German BSI last December.
Here is a list of the vulnerabilities in the advisory. I have reordered and optimized where possible for efficient scanning with Qualys, for example listing the most recent patch first to take advantage of superseding patches:
- Windows: MS14-060 for CVE-2014-4114, Qualys ID: 90979
- Internet Explorer: MS14-021 for CVE-2014-1776, Qualys ID: 100191
- MS14-012 for CVE-201
Qualys
US-CERT: Top 30 Vulnerabilities | Qualys
blogs_qualys·2015-05-01·CVSS 2.6
[LOW] US-CERT: Top 30 Vulnerabilities | Qualys
On April 29, 2015 US-CERT published TA15-119A which describes the Top 30 vulnerabilities that critical infrastructure organizations should focus on because they are under attack all the time. The list contains Windows, Internet Explorer, Adobe Software from Reader, Flash to Cold Fusion, Java from Oracle and others and is quite similar to the more generic set of software packages published by the German BSI last December.
Here is a list of the vulnerabilities in the advisory. I have reordered and optimized where possible for efficient scanning with Qualys, for example listing the most recent patch first to take advantage of superseding patches:
Windows: MS14-060 for CVE-2014-4114, Qualys ID: 90979
MS14-012 for CVE-2014-0322
MS13-038 for CVE-2013-1347
MS13-008 for CVE-2012-4792
MS10-01
http://ha.ckers.org/blog/20060621/malformed-ascii-bypasses-filters/http://ha.ckers.org/blog/20060621/us-ascii-xss-part-2http://www.osvdb.org/28376http://www.securityfocus.com/archive/1/437948/100/0/threadedhttp://www.securityfocus.com/archive/1/438049/100/0/threadedhttp://www.securityfocus.com/archive/1/438051/100/0/threadedhttp://www.securityfocus.com/archive/1/438066/100/0/threadedhttp://www.securityfocus.com/archive/1/438154/100/0/threadedhttp://www.securityfocus.com/archive/1/438163/100/0/threadedhttp://www.securityfocus.com/archive/1/438358/100/0/threadedhttp://www.securityfocus.com/archive/1/438359/100/0/threadedhttps://exchange.xforce.ibmcloud.com/vulnerabilities/27288http://ha.ckers.org/blog/20060621/malformed-ascii-bypasses-filters/http://ha.ckers.org/blog/20060621/us-ascii-xss-part-2http://www.osvdb.org/28376http://www.securityfocus.com/archive/1/437948/100/0/threadedhttp://www.securityfocus.com/archive/1/438049/100/0/threadedhttp://www.securityfocus.com/archive/1/438051/100/0/threadedhttp://www.securityfocus.com/archive/1/438066/100/0/threadedhttp://www.securityfocus.com/archive/1/438154/100/0/threadedhttp://www.securityfocus.com/archive/1/438163/100/0/threadedhttp://www.securityfocus.com/archive/1/438358/100/0/threadedhttp://www.securityfocus.com/archive/1/438359/100/0/threadedhttps://exchange.xforce.ibmcloud.com/vulnerabilities/27288
2006-06-26
Published
Exploited in the wild