Vulnerabilities > CVE-2006-6990 - Remote Security vulnerability in Advanced Search Technologies Inc. Enigma Browser 3.8.8
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
NONE Availability impact
NONE Summary
Cross-domain vulnerability in Enigma Browser 3.8.8 allows remote attackers to access restricted information from other domains via an object tag with a data parameter that references a link on the attacker's originating site that specifies a Location HTTP header that references the target site, which then makes that content available through the outerHTML attribute of the object, a similar vulnerability to CVE-2006-3280.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |