Vulnerabilities > CVE-2004-1104 - Unspecified vulnerability in Microsoft IE 6.0

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
microsoft
exploit available
NVD
Published: 2004-12-31
Updated: 2024-11-20

Summary

Microsoft Internet Explorer 6.0 SP2 allows remote attackers to spoof a legitimate URL in the status bar and conduct a phishing attack via a web page that contains a BASE element that points to the legitimate site, followed by an anchor (a) element with an empty "href" attribute, and a FORM whose action points to a malicious URL, and an INPUT submit element that is modified to look like a legitimate URL.

Vulnerable Configurations

Part Description Count
Application
Microsoft
1

Exploit-Db

descriptionMicrosoft Internet Explorer 6.0 HTML Form Tags URI Obfuscation Weakness. CVE-2004-1104 . Remote exploit for windows platform
idEDB-ID:24714
last seen2016-02-02
modified2004-10-30
published2004-10-30
reporterhttp-equiv
sourcehttps://www.exploit-db.com/download/24714/
titleMicrosoft Internet Explorer 6.0 HTML Form Tags URI Obfuscation Weakness

References