vendor:
Internet Explorer, Opera
by:
bitlance
5.5
CVSS
MEDIUM
URI Obfuscation
200
CWE
Product Name: Internet Explorer, Opera
Affected Version From: Microsoft Internet Explorer, Opera
Affected Version To:
Patch Exists: NO
Related CWE:
CPE: a:microsoft:internet_explorer, cpe:/a:opera:opera_browser
Platforms Tested: Windows, Linux, Mac
2004
URI Obfuscation Vulnerability in Microsoft Internet Explorer and Opera
An attacker can obfuscate the URI of a link in Microsoft Internet Explorer and Opera, which can lead to the impersonation of legitimate websites and the theft of sensitive information from users. This vulnerability allows an attacker to redirect users to an attacker-controlled site.
Mitigation:
Users should ensure they are visiting legitimate websites by double-checking the URL and using trusted bookmarks. Keeping browsers and security software up to date can also help prevent this vulnerability.