Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Microsoft Internet Explorer 6 omits high-bit URL-encoded characters when displaying the address bar, which allows remote attackers to spoof the address bar via a URL with a domain name that differs from an important domain name only in these characters, as demonstrated by using exam%A9ple.com to spoof example.com, aka MSRC ticket MSRC7900.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft IE NBSP地址栏URL欺骗漏洞
Vulnerability Description
Internet Explorer是微软Windows操作系统中默认捆绑的WEB浏览器。 Internet Explorer在显示地址栏时忽略了高位URL编码字符,如果攻击者所使用的URL域名与其他域名只有字符上差异的话,就可以欺骗地址栏执行网络钓鱼攻击。例如, http://www.foo%A9bar.com/ 在地址栏中实际显示为 http://www.foobar.com/
CVSS Information
N/A
Vulnerability Type
N/A