Session Fixation Vulnerability in Internet Explorer 6.0
CVE-2004-0866

Currently unrated

Key Information:

Vendor

Kde

Status
Konqueror
Ie
Firefox
Internet Explorer
Vendor
CVE Published:
16 September 2004

What is CVE-2004-0866?

Internet Explorer 6.0 has a critical vulnerability that allows malicious websites to set cookies for country-specific top-level domains (.ltd.uk, .plc.uk, .sch.uk). This flaw can be exploited by attackers to conduct session fixation attacks, permitting them to hijack a user's HTTP session. By manipulating cookies, attackers could gain unauthorized access to user sessions, leading to potential data theft and privacy breaches.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://marc.info/?l=bugtraq&m=109536612321898&w=2
mailing-listx_refsource_BUGTRAQ
http://securitytracker.com/id?1011332
vdb-entryx_refsource_SECTRACK
https://exchange.xforce.ibmcloud.com/vulnerabilities/17415
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.