9.3

CVE-2007-3826

Exploit
Microsoft Internet Explorer 7 on Windows XP SP2 allows remote attackers to prevent users from leaving a site, spoof the address bar, and conduct phishing and other attacks via repeated document.open function calls after a user requests a new page, but before the onBeforeUnload function is called.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftInternet Explorer Version7
   MicrosoftWindows Xp Updatesp2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 28.74% 0.979
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://securitytracker.com/id?1018788
http://www.securityfocus.com/archive/1/482366/100/0/threaded
http://www.us-cert.gov/cas/techalerts/TA07-282A.html
US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-057
http://lcamtuf.coredump.cx/ietrap3/
http://osvdb.org/38212
http://secunia.com/advisories/26069
Vendor Advisory
http://securityreason.com/securityalert/2892
http://www.securityfocus.com/archive/1/473702/100/0/threaded
http://www.securityfocus.com/bid/24911
Exploit
http://www.vupen.com/english/advisories/2007/2540
https://exchange.xforce.ibmcloud.com/vulnerabilities/35421
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2324