RSS   Vulnerabilities for 'Locked browser'   RSS

2006-08-11
 
CVE-2006-4092

CWE-Other
 

 
Simpliciti Locked Browser does not properly limit a user's actions to ones within the intended Internet Explorer environment, which allows local users to perform unauthorized actions by visiting a web site that executes a JavaScript window.blur loop to remove focus from the browser window, then pressing CTRL-SHIFT-ESC to invoke the Task Manager.

 


Copyright 2024, cxsecurity.com

 

Back to Top