4.3 - CVE-2006-2111

Executive Summary

Informations
Name	CVE-2006-2111	First vendor Publication	2006-05-01
Vendor	Cve	Last vendor Modification	2018-10-18

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:N/A:N)
Cvss Base Score	4.3	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A component in Microsoft Outlook Express 6 allows remote attackers to bypass domain restrictions and obtain sensitive information via redirections with the mhtml: URI handler, as originally reported for Internet Explorer 6 and 7, aka "URL Redirect Cross Domain Information Disclosure Vulnerability."

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2111

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-200	Information Exposure

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:1605

Oval ID:	oval:org.mitre.oval:def:1605
Title:	URL Redirect Cross Domain Information Disclosure Vulnerability
Description:	A component in Microsoft Outlook Express 6 allows remote attackers to bypass domain restrictions and obtain sensitive information via redirections with the mhtml: URI handler, as originally reported for Internet Explorer 6 and 7, aka "URL Redirect Cross Domain Information Disclosure Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2006-2111	Version:	4
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft Outlook Express
Definition Synopsis:
Microsoft Outlook Express 6 on Win XP SP2 Microsoft Windows XP SP2 or later is installed AND Microsoft Outlook Express 6.0 for Windows XP/2003 is installed AND the version of inetcomm.dll is less than 6.0.2900.3138 OR Microsoft Outlook Express 6 on Win 2k3 SP1 Microsoft Windows Server 2003 SP1 (x86) is installed AND Microsoft Outlook Express 6.0 for Windows XP/2003 is installed AND the version of inetcomm.dll is less than 6.0.3790.2929 OR Microsoft Outlook Express 6 on Win 2k3 SP2 Microsoft Windows Server 2003 SP2 (x86) is installed AND Microsoft Outlook Express 6.0 for Windows XP/2003 is installed AND the version of inetcomm.dll is less than 6.0.3790.4073 OR Microsoft Outlook Express 6 on Win XP SP2 (64-bit) Microsoft Outlook Express 6.0 for Windows XP/2003 is installed AND the version of inetcomm.dll is less than 6.0.3790.4073 AND Microsoft Windows XP x64 Edition SP2 is installed OR Microsoft Outlook Express 6 on Win XP SP1 (64-bit) Microsoft Windows XP SP1 (64-bit) is installed AND Microsoft Outlook Express 6.0 for Windows XP/2003 is installed AND the version of inetcomm.dll is less than 6.0.3790.2929

CPE : Common Platform Enumeration

Type	Description	Count
Application	Microsoft Outlook Express cpe:2.3:a:microsoft:outlook_express:6.0:::::::*	1

OpenVAS Exploits

Date	Description
2011-01-14	Name : Microsoft Outlook Express/Windows Mail MHTML URI Handler Information Disclosu... File : nvt/gb_ms07-034.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
25073	Microsoft IE mhtml: Redirection Domain Restriction Bypass Internet Explorer contains a flaw that may allow a malicious user to access documents served from another web site. The issue is caused due to an error in the handling of redirections for URLs with the "mhtml:" URI handler. It is possible that the flaw may allow a malicious website to access properties of a site in an arbitrary external domain in the context of the victim user's browser resulting in a loss of confidentiality.

Description

25073

Microsoft IE mhtml: Redirection Domain Restriction Bypass

Internet Explorer contains a flaw that may allow a malicious user to access documents served from another web site. The issue is caused due to an error in the handling of redirections for URLs with the "mhtml:" URI handler. It is possible that the flaw may allow a malicious website to access properties of a site in an arbitrary external domain in the context of the victim user's browser resulting in a loss of confidentiality.

Information Assurance Vulnerability Management (IAVM)

Date	Description
2007-06-14	IAVM : 2007-B-0011 - Multiple Vulnerabilities in Microsoft Outlook Express and Windows Mail Severity : Category II - VMSKEY : V0014354

Snort® IPS/IDS

Date	Description
2014-11-16	Microsoft Windows Mail file execution attempt RuleID : 31650 - Revision : 2 - Type : SERVER-MAIL
2014-01-10	Microsoft Windows Vista Windows mail file execution attempt RuleID : 16023 - Revision : 6 - Type : FILE-EXECUTABLE
2014-01-10	Microsoft Windows Vista Windows mail file execution attempt RuleID : 16022 - Revision : 14 - Type : FILE-EXECUTABLE
2014-01-10	Microsoft Windows Mail file execution attempt RuleID : 11837 - Revision : 13 - Type : SERVER-MAIL
2014-01-10	Microsoft Direct Speech Recognition ActiveX function call unicode access RuleID : 11833 - Revision : 8 - Type : WEB-ACTIVEX
2014-01-10	Microsoft Direct Speech Recognition ActiveX function call access RuleID : 11832 - Revision : 11 - Type : BROWSER-PLUGINS
2014-01-10	Microsoft Direct Speech Recognition ActiveX clsid unicode access RuleID : 11831 - Revision : 8 - Type : WEB-ACTIVEX
2014-01-10	Microsoft Direct Speech Recognition ActiveX clsid access attempt RuleID : 11830 - Revision : 17 - Type : BROWSER-PLUGINS
2014-01-10	Microsoft Voice Control ActiveX function call unicode access RuleID : 11829 - Revision : 8 - Type : WEB-ACTIVEX
2014-01-10	Microsoft Voice Control ActiveX function call access RuleID : 11828 - Revision : 11 - Type : BROWSER-PLUGINS
2014-01-10	Microsoft Voice Control ActiveX clsid unicode access RuleID : 11827 - Revision : 8 - Type : WEB-ACTIVEX
2014-01-10	Microsoft Voice Control Recognition ActiveX clsid access attempt RuleID : 11826 - Revision : 17 - Type : BROWSER-PLUGINS

Nessus® Vulnerability Scanner

Date	Description
2007-06-12	Name : Arbitrary code can be executed on the remote host through the email client. File : smb_nt_ms07-034.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source	Url
BID	http://www.securityfocus.com/bid/17717
BUGTRAQ	http://www.securityfocus.com/archive/1/449883/100/200/threaded http://www.securityfocus.com/archive/1/449917/100/0/threaded
CERT	http://www.us-cert.gov/cas/techalerts/TA07-163A.html
CERT-VN	http://www.kb.cert.org/vuls/id/783761
HP	http://www.securityfocus.com/archive/1/471947/100/0/threaded
MISC	http://secunia.com/Internet_Explorer_Arbitrary_Content_Disclosure_Vulnerabili...
MS	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07...
OSVDB	http://www.osvdb.org/25073
OVAL	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
SECTRACK	http://securitytracker.com/id?1016005
SECUNIA	http://secunia.com/advisories/19738 http://secunia.com/advisories/22477
VUPEN	http://www.vupen.com/english/advisories/2006/1558 http://www.vupen.com/english/advisories/2007/2154
XF	https://exchange.xforce.ibmcloud.com/vulnerabilities/26281

Alert History

If you want to see full details history, please login or register.

Date	Informations
2021-05-04 12:03:59	Multiple Updates
2021-04-22 01:04:32	Multiple Updates
2020-05-23 00:17:44	Multiple Updates
2019-03-18 12:01:18	Multiple Updates
2018-10-18 21:20:06	Multiple Updates
2018-10-13 00:22:34	Multiple Updates
2017-10-11 09:23:40	Multiple Updates
2017-07-20 09:23:33	Multiple Updates
2016-06-28 15:45:18	Multiple Updates
2016-04-26 14:34:20	Multiple Updates
2014-02-17 10:35:41	Multiple Updates
2013-05-11 10:55:53	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	1
CPE ID(s)	1
Sources(s)	16
osvdb(s)	1
Openvas Exploit(s)	1
IAVM(s)	1
Snort® Rule(s)	12
Nessus® Exploit(s)	1

	Related
9.3	MS07-034
4.3	VU#783761
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 2 more Alert(s)