Vulnerability Details CVE-2004-0844
Internet Explorer 6 on Double Byte Character Set (DBCS) systems allows remote attackers to alter displayed address bars and spoof web pages via a URL containing special characters, facilitating phishing attacks, aka the "Address Bar Spoofing on Double Byte Character Set Systems Vulnerability."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.534
EPSS Ranking 97.9%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=110178042025729&w=2
- http://marc.info/?l=ntbugtraq&m=110174346717733&w=2
- http://www.kb.cert.org/vuls/id/431576
- http://www.us-cert.gov/cas/techalerts/TA04-293A.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-038
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17651
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17652
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2448
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8127
- http://marc.info/?l=bugtraq&m=110178042025729&w=2
- http://marc.info/?l=ntbugtraq&m=110174346717733&w=2
- http://www.kb.cert.org/vuls/id/431576
- http://www.us-cert.gov/cas/techalerts/TA04-293A.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-038
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17651
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17652
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2448
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8127