CVE-2006-5577Sensitive Information Exposure in Microsoft IE

3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
52.2%
top 2.07%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft IE
Timeline
PublishedDec 12
Latest updateMay 1

Description

Microsoft Internet Explorer 6 and earlier allows remote attackers to obtain sensitive information via unspecified uses of the OBJECT HTML tag, which discloses the absolute path of the corresponding TIF folder, aka "TIF Folder Information Disclosure Vulnerability," and a different issue than CVE-2006-5578.

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-p9vg-24hf-v2jq: Microsoft Internet Explorer 6 and earlier allows remote attackers to obtain sensitive information via unspecified uses of the OBJECT HTML tag, which d2022-05-01
CVEList
CVE-2006-5577: Microsoft Internet Explorer 6 and earlier allows remote attackers to obtain sensitive information via unspecified uses of the OBJECT HTML tag, which d2006-12-12
CVE-2006-5577 — Sensitive Information Exposure | cvebase