CVE-2006-5577

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer versions 6 and earlier

Description: The issue allows remote attackers to obtain sensitive information via unspecified uses of the OBJECT HTML tag, which discloses the absolute path of the corresponding TIF folder. An information disclosure vulnerability exists in certain scenarios where the path to the cached content in the TIF folder could be disclosed. An attacker could exploit the issue by constructing a specially crafted Web page that could allow for information disclosure if a user viewed the Web page. This would enable the attacker to retrieve files from the Temporary Internet Files (TIF) folder on a user's system, but user interaction is required to exploit the issue.

Recommendations: For Microsoft Internet Explorer versions 6 and earlier, at the moment, there is no information about a newer version that contains a fix for this issue.