A component in Microsoft Outlook Express 6 allows remote attackers to bypass domain restrictions and obtain sensitive information via redirections with the mhtml: URI handler, as originally reported for Internet Explorer 6 and 7, aka "URL Redirect Cross Domain Information Disclosure Vulnerability."
References
Configurations
History
No history.
Information
Published : 2006-05-01 19:06
Updated : 2024-02-28 10:42
NVD link : CVE-2006-2111
Mitre link : CVE-2006-2111
CVE.ORG link : CVE-2006-2111
JSON object : View
Products Affected
microsoft
- outlook_express
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor