CVE-2006-2111

Currently unrated

Key Information:

Vendor: Microsoft
Status: Outlook Express
Vendor: CVE Published:; 1 May 2006

Summary

A component in Microsoft Outlook Express 6 allows remote attackers to bypass domain restrictions and obtain sensitive information via redirections with the mhtml: URI handler, as originally reported for Internet Explorer 6 and 7, aka "URL Redirect Cross Domain Information Disclosure Vulnerability."

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://secunia.com/advisories/19738

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/Internet_Explorer_Arbitrary_Content_Di...

x_refsource_MISC

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 1, 2006
Vulnerability Reserved
May 1, 2006

Collectors

NVD DatabaseMitre Database