Vulnerabilities > CVE-2004-0844 - Unspecified vulnerability in Microsoft IE 6
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Internet Explorer 6 on Double Byte Character Set (DBCS) systems allows remote attackers to alter displayed address bars and spoof web pages via a URL containing special characters, facilitating phishing attacks, aka the "Address Bar Spoofing on Double Byte Character Set Systems Vulnerability."
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Oval
accepted 2014-02-24T04:03:12.787-05:00 class vulnerability contributors name Harvey Rubinovitz organization The MITRE Corporation name Harvey Rubinovitz organization The MITRE Corporation name Robert L. Hollis organization ThreatGuard, Inc. name Maria Mikhno organization ALTX-SOFT
description Internet Explorer 6 on Double Byte Character Set (DBCS) systems allows remote attackers to alter displayed address bars and spoof web pages via a URL containing special characters, facilitating phishing attacks, aka the "Address Bar Spoofing on Double Byte Character Set Systems Vulnerability." family windows id oval:org.mitre.oval:def:2448 status accepted submitted 2005-01-18T12:00:00.000-04:00 title Address Bar Spoofing on Double Byte Character Set Systems Vulnerability (Server 2003) version 68 accepted 2014-02-24T04:03:27.966-05:00 class vulnerability contributors name Harvey Rubinovitz organization The MITRE Corporation name Christine Walzer organization The MITRE Corporation name Robert L. Hollis organization ThreatGuard, Inc. name Maria Mikhno organization ALTX-SOFT
description Internet Explorer 6 on Double Byte Character Set (DBCS) systems allows remote attackers to alter displayed address bars and spoof web pages via a URL containing special characters, facilitating phishing attacks, aka the "Address Bar Spoofing on Double Byte Character Set Systems Vulnerability." family windows id oval:org.mitre.oval:def:8127 status accepted submitted 2004-10-25T05:13:00.000-04:00 title Address Bar Spoofing on Double Byte Character Set Systems Vulnerability version 68
References
- http://www.us-cert.gov/cas/techalerts/TA04-293A.html
- http://www.kb.cert.org/vuls/id/431576
- http://marc.info/?l=bugtraq&m=110178042025729&w=2
- http://marc.info/?l=ntbugtraq&m=110174346717733&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17652
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17651
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8127
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2448
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-038