CVE-2007-3406 in Internet Explorerthông tin

Tóm tắt

Bởi MITRE

Multiple absolute path traversal vulnerabilities in Microsoft Internet Explorer 6 on Windows XP SP2 allow remote attackers to access arbitrary local files via the file: URI in the (1) src attribute of a (a) bgsound, (b) input, (c) EMBED, (d) img, or (e) script tag; (2) data attribute of an object tag; (3) value attribute of a param tag; (4) background attribute of a body tag; or (5) the background:url attribute declared in the BODY parameter of a STYLE tag.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Đặt trước

26/06/2007

Tiết lộ

26/06/2007

Kiểm duyệt

được chấp nhận

mục

VDB-37470

CPE

sẵn sàng

CWE

CWE-22 (Đã xác nhận)

CVSS

4.3 (NVD)

EPSS

0.10893

KEV

không

Các hoạt động

rất thấp

ngành

Telecommunication, Education, ...

Nguồn

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-3406
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-3406
CVE Details	https://www.cvedetails.com/cve/CVE-2007-3406/

◂ Trước Tổng Quan Tiếp theo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!