CVE-2007-3892Code Injection in Microsoft Internet Explorer

CWE-94Code Injection2 documents2 sources
Severity
7.5HIGHNVD
EPSS
40.8%
top 2.61%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Internet Explorer
Timeline
PublishedOct 9
Latest updateMay 1

Description

Microsoft Internet Explorer 5.01 through 7 allows remote attackers to spoof the URL address bar and other "trust UI" components via unspecified vectors, a different issue than CVE-2007-1091 and CVE-2007-3826.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDmicrosoft/internet_explorer26 versions+25

🔴Vulnerability Details

1
GHSA
GHSA-xpp7-fcx9-3jh8: Microsoft Internet Explorer 52022-05-01
CVE-2007-3892 — Code Injection in Microsoft | cvebase