exploitDog

CVE-2006-4092

Опубликовано: 11 авг. 2006

Источник: nvd

CVSS2: 3.6

EPSS Низкий

Описание

Simpliciti Locked Browser does not properly limit a user's actions to ones within the intended Internet Explorer environment, which allows local users to perform unauthorized actions by visiting a web site that executes a JavaScript window.blur loop to remove focus from the browser window, then pressing CTRL-SHIFT-ESC to invoke the Task Manager.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:simpliciti:locked_browser:*:*:*:*:*:*:*:*

EPSS

Процентиль: 22%

0.00071

Низкий

3.6 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-p32q-qwj8-v65w

github

почти 4 года назад

Simpliciti Locked Browser does not properly limit a user's actions to ones within the intended Internet Explorer environment, which allows local users to perform unauthorized actions by visiting a web site that executes a JavaScript window.blur loop to remove focus from the browser window, then pressing CTRL-SHIFT-ESC to invoke the Task Manager.

EPSS

Процентиль: 22%

0.00071

Низкий

3.6 Low

CVSS2

Дефекты

NVD-CWE-Other