Vulnerabilities > CVE-2006-5544 - Unspecified vulnerability in Microsoft IE 7.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Visual truncation vulnerability in Microsoft Internet Explorer 7 allows remote attackers to spoof the address bar and possibly conduct phishing attacks via a malicious URL containing non-breaking spaces (%A0), which causes the address bar to omit some characters from the URL.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://blogs.technet.com/msrc/archive/2006/10/26/ie-address-bar-issue.aspx
- http://blogs.technet.com/msrc/archive/2006/10/26/ie-address-bar-issue.aspx
- http://secunia.com/advisories/22542
- http://secunia.com/advisories/22542
- http://secunia.com/internet_explorer_7_popup_address_bar_spoofing_test/
- http://secunia.com/internet_explorer_7_popup_address_bar_spoofing_test/
- http://securitytracker.com/id?1017122
- http://securitytracker.com/id?1017122
- http://www.kb.cert.org/vuls/id/347188
- http://www.kb.cert.org/vuls/id/347188
- http://www.osvdb.org/30022
- http://www.osvdb.org/30022
- http://www.securityfocus.com/archive/1/449917/100/0/threaded
- http://www.securityfocus.com/archive/1/449917/100/0/threaded
- http://www.securityfocus.com/bid/20728
- http://www.securityfocus.com/bid/20728
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29827
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29827