Intrusion PreventionMS.IE.DBCS.Address.Bar.Spoofing
Description
This indicates a possible attempt to exploit a DBCS address bar spoofing vulnerability in Microsoft Internet Explorer.
There is an address bar spoofing vulnerability in Internet Explorer that may allow an attacker to gather sensitive information from a victim for the purpose of conducting further attacks. The vulnerability is due to the application's failure to handle certain double byte characters, leading to incorrect information being displayed on address bar. A remote attacker can create a specially crafted Web page that displays the URL of a trusted Web site in the address bar, but displays the content of a malicious Web page. As a result this vulnerability allows a remote attacker to obtain sensitive information from a victim, such as credit card information. The vulnerability only affects computers that are configured to employ double byte character sets.
Affected Products
Microsoft Internet Explorer 6.0 SP1 and earlier versions.
Impact
System compromise.
Recommended Actions
Apply security patch to the system as given in the Microsoft bulletins MS04-038.
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
| ID | 10556 |
| Created | Aug 10, 2005 |
| Updated | Aug 29, 2022 |
| Risk |
|
| CVE ID | CVE-2004-0844 |
| Exploit Prediction Score | 95.42% |
| Default Action | pass |
| Active | |
| Affected OS | Windows |
| Affected App | IE |