PT-2006-4936 · Simpliciti · Simpliciti Locked Browser
Adam Baldwin
·
Published
2006-08-11
·
Updated
2018-10-17
·
CVE-2006-4092
CVSS v2.0
3.6
Low
| Vector | AV:L/AC:L/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Simpliciti Locked Browser (affected versions not specified)
Description
The issue allows local users to perform unauthorized actions by exploiting a weakness in the browser's limitation of user actions. This can be achieved by visiting a web site that executes a JavaScript
window.blur loop to remove focus from the browser window, and then pressing CTRL-SHIFT-ESC to invoke the Task Manager.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Simpliciti Locked Browser