CVE-2006-5544Microsoft IE vulnerability

3 documents3 sources
Severity
6.4MEDIUMNVD
EPSS
54.4%
top 1.97%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft IE
Timeline
PublishedOct 26
Latest updateMay 1

Description

Visual truncation vulnerability in Microsoft Internet Explorer 7 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a malicious URL containing non-breaking spaces (%A0), which causes the address bar to omit some characters from the URL.

CVSS vector

AV:N/AC:L/C:P/I:P/A:NExploitability: 10.0 | Impact: 4.9

Affected Packages1 packages

NVDmicrosoft/ie7.0

🔴Vulnerability Details

2
GHSA
GHSA-mq8x-fq5j-38mq: Visual truncation vulnerability in Microsoft Internet Explorer 7 allows remote attackers to spoof the address bar and possibly conduct phishing attack2022-05-01
CVEList
CVE-2006-5544: Visual truncation vulnerability in Microsoft Internet Explorer 7 allows remote attackers to spoof the address bar and possibly conduct phishing attack2006-10-26
CVE-2006-5544 — Microsoft IE vulnerability | cvebase