Vulnerabilities > CVE-2001-0339 - Unspecified vulnerability in Microsoft Internet Explorer
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Internet Explorer 5.5 and earlier allows remote attackers to display a URL in the address bar that is different than the URL that is actually being displayed, which could be used in web site spoofing attacks, aka the "Web page spoofing vulnerability."
Vulnerable Configurations
Oval
| accepted | 2014-02-24T04:00:07.894-05:00 | ||||||||
| class | vulnerability | ||||||||
| contributors |
| ||||||||
| description | Internet Explorer 5.5 and earlier allows remote attackers to display a URL in the address bar that is different than the URL that is actually being displayed, which could be used in web site spoofing attacks, aka the "Web page spoofing vulnerability." | ||||||||
| family | windows | ||||||||
| id | oval:org.mitre.oval:def:1096 | ||||||||
| status | accepted | ||||||||
| submitted | 2004-04-29T12:00:00.000-04:00 | ||||||||
| title | IE Web Page Spoofing Vulnerability | ||||||||
| version | 66 |
References
- http://www.ciac.org/ciac/bulletins/l-087.shtml
- http://www.securityfocus.com/bid/2737
- http://www.osvdb.org/5694
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1096
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6556
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-027