CVE-2006-5805

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer version 7

Description: The issue allows remote attackers to make a security certificate from a secure web site appear invalid. This is achieved by using a link to res://ieframe.dll/invalidcert.htm with the target site as an argument. As a result, the site's URL is displayed in the address bar, but the certificate is reported as invalid.

Recommendations: For Microsoft Internet Explorer version 7, consider avoiding the use of the res://ieframe.dll/invalidcert.htm link until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.