Microsoft Outlook Express 6.0 - URI Obfuscation

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1054472 漏洞类型
发布时间 2004-05-13 更新时间 2004-05-13
CVE编号 N/A CNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/24118
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/10345/info

Microsoft Outlook Express has been reported prone to a URI obfuscation vulnerability.

This issue is reported to affect version 6.0 of the affected software, other versions might also be affected.

An attacker could reportedly get a user to visit an attacker controlled site without the usual address bar feature in a web browser. This could potentially make it easier for an attacker to fool a user into trusting the site contents.

<BASE href=http://www.example1.com target=_top>
<A href="http://www.example2.com">http://www.example1.com</A>