PT-2006-5446 · Aol+1 · Aol Icq Toolbar+1

Ezequiel Gutesman

Publicado

2006-09-09

Atualizado

2018-10-17

CVE-2006-4661

CVSS v2.0

2.6

Baixa

Vetor

AV:N/AC:H/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions AOL ICQ Toolbar version 1.3 for Internet Explorer

Description The issue arises from improper validation of the origin of the configuration web page, specifically options2.html, which can be exploited by remote attackers to trick users into reconfiguring the toolbar by presenting disguised checkboxes.

Recommendations For AOL ICQ Toolbar version 1.3, consider restricting access to the configuration web page options2.html until a proper fix is applied to prevent reconfiguration by disguised checkboxes.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2006-4661

Produtos afetados

Aol Icq Toolbar

Internet Explorer

PT-2006-5446 · Aol+1 · Aol Icq Toolbar+1

CVE-2006-4661

Identificadores relacionados

Produtos afetados

Referências · 8