2.6
CVE-2004-2219
- EPSS 8.14%
- Veröffentlicht 31.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:09:15
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Microsoft Internet Explorer 6 allows remote attackers to spoof the address bar to facilitate phishing attacks via Javascript that uses an invalid URI, modifies the Location field, then uses history.back to navigate to the previous domain, aka NullyFake.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Internet Explorer Version5.01
Microsoft ≫ Internet Explorer Version5.5
Microsoft ≫ Internet Explorer Version6.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 8.14% | 0.941 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.6 | 4.9 | 2.9 |
AV:N/AC:H/Au:N/C:N/I:P/A:N
|
http://archives.neohapsis.com/archives/bugtraq/2004-08/0215.html
http://secunia.com/advisories/12304
http://securitytracker.com/id?1010957
http://umbrella.name/originalvuln/msie/NullyFake/nullyfake-content.txt
http://www.osvdb.org/8978
https://exchange.xforce.ibmcloud.com/vulnerabilities/17007