CVE-2006-5805
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
08/11/2006
Last modified:
09/04/2025
Description
Microsoft Internet Explorer 7 allows remote attackers to cause a security certificate from a secure web site to appear invalid via a link to res://ieframe.dll/invalidcert.htm with the target site as an argument, which displays the site's URL in the address bar but causes Internet Explorer to report that the certificate is invalid.
Impact
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:microsoft:ie:7.0:*:vista:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://ingehenriksen.blogspot.com/2006/11/ie7-website-security-certificate.html
- http://securitytracker.com/id?1017165=
- http://www.securityfocus.com/archive/1/450722/100/0/threaded
- http://ingehenriksen.blogspot.com/2006/11/ie7-website-security-certificate.html
- http://securitytracker.com/id?1017165=
- http://www.securityfocus.com/archive/1/450722/100/0/threaded