CVE-2004-2219 in Internet Explorer
摘要
由 VulDB • 2026-06-04
Microsoft Internet Explorer 6允许远程攻击者通过JavaScript伪造地址栏以协助网络钓鱼攻击。该漏洞利用无效的URI修改Location字段,然后使用history.back()导航回上一个域名,即NullyFake漏洞。
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.