CVE-2006-5805Microsoft IE vulnerability

3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
2.1%
top 15.85%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft IE
Timeline
PublishedNov 8
Latest updateMay 1

Description

Microsoft Internet Explorer 7 allows remote attackers to cause a security certificate from a secure web site to appear invalid via a link to res://ieframe.dll/invalidcert.htm with the target site as an argument, which displays the site's URL in the address bar but causes Internet Explorer to report that the certificate is invalid.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDmicrosoft/ie7.0

🔴Vulnerability Details

2
GHSA
GHSA-r382-7625-8wwh: Microsoft Internet Explorer 7 allows remote attackers to cause a security certificate from a secure web site to appear invalid via a link to res://ief2022-05-01
CVEList
CVE-2006-5805: Microsoft Internet Explorer 7 allows remote attackers to cause a security certificate from a secure web site to appear invalid via a link to res://ief2006-11-08
CVE-2006-5805 — Microsoft IE vulnerability | cvebase