CVE-2006-3640

Published: Aug 9, 2006Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Microsoft Internet Explorer 5.01 and 6 allows certain script to persist across navigations between pages, which allows remote attackers to obtain the window location of visited web pages in other domains or zones, aka "Window Location Information Disclosure Vulnerability."

Affected (2)

Products: Microsoft: Ie, Internet Explorer

2 products

Internet Explorer

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Microsoft Ie	Version 6 windows_server_2003_sp1
Microsoft Internet Explorer	Version 5.01

References (14)

http://secunia.com/advisories/21396

Source: secure@microsoft.com

http://securitytracker.com/id?1016663

Source: secure@microsoft.com

http://www.osvdb.org/27850

Source: secure@microsoft.com

http://www.securityfocus.com/bid/19339

Source: secure@microsoft.com

http://www.vupen.com/english/advisories/2006/3212

Source: secure@microsoft.com

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-042

Source: secure@microsoft.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A171

Source: secure@microsoft.com

http://secunia.com/advisories/21396

Source: af854a3a-2127-422b-91ae-364da2661108

http://securitytracker.com/id?1016663

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/27850

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/19339

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2006/3212

Source: af854a3a-2127-422b-91ae-364da2661108

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-042

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A171

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.