CVE-2006-2900
Published Jun 7, 2006
Last updated 13 years ago
Overview
- Description
- Internet Explorer 6 allows user-assisted remote attackers to read arbitrary files by tricking a user into typing the characters of the target filename in a text box and using the OnKeyDown, OnKeyPress, and OnKeyUp Javascript keystroke events to change the focus and cause those characters to be inserted into a file upload input control, which can then upload the file when the user submits the form.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4
- Impact score
- 4.9
- Exploitability score
- 4.9
- Vector string
- AV:N/AC:H/Au:N/C:P/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-200
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:microsoft:ie:5.01:windows_2000_sp4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B054A26A-7414-41B2-A46D-49E798D7A346"
},
{
"criteria": "cpe:2.3:a:microsoft:ie:6:*:windows_xp_professional_64bit:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8EF317BB-E63A-4A60-A2E1-6797A402D88F"
},
{
"criteria": "cpe:2.3:a:microsoft:ie:6:sp1:windows_98:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B1D7486F-1B6C-4705-B73C-F763F36F5150"
},
{
"criteria": "cpe:2.3:a:microsoft:ie:6:sp1:windows_98_se:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6DBFDCF4-ACC7-4196-BA4D-2A35FAA5E1F0"
},
{
"criteria": "cpe:2.3:a:microsoft:ie:6:sp1:windows_millennium:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5E49636B-A425-4595-9663-A22A9F7C7D30"
},
{
"criteria": "cpe:2.3:a:microsoft:ie:6:sp1:windows_xpsp1:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FCFF1342-8AD8-4003-81AA-09DB4A12EEBD"
},
{
"criteria": "cpe:2.3:a:microsoft:ie:6:windows_2000_sp4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DBEABB0B-61EF-44E1-8673-F4B5A99A4164"
},
{
"criteria": "cpe:2.3:a:microsoft:ie:6:windows_server_2003_sp1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B80088A3-2AA4-44A2-98DF-359E15F8E18B"
},
{
"criteria": "cpe:2.3:a:microsoft:ie:6:windows_server_2003_sp1_itanium:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "181D0FA2-79E1-4422-9810-D7A557805872"
},
{
"criteria": "cpe:2.3:a:microsoft:ie:6:windows_xp_sp2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "81C4C1ED-AC7D-4970-8B34-62D304A83FE9"
},
{
"criteria": "cpe:2.3:h:canon:network_camera_server_vb101:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E1EBD1BF-DEE2-4047-A8B4-3A816FC80003"
}
],
"operator": "OR"
}
]
}
]