CVE-2006-0799 Information

Description

Microsoft Internet Explorer allows remote attackers to spoof a legitimate URL in the status bar and conduct a phishing attack via a web page with an anchor element with a legitimate \href\ attribute a form whose action points to a malicious URL and an INPUT submit element that is modified to look like a legitimate URL. NOTE: this issue is very similar to CVE-2004-1104 although the manipulations are slightly different.

Reference

http://www.osvdb.org/23609 http://www.securityfocus.com/archive/1/425298/100/0/threaded http://www.securityfocus.com/archive/1/425386/100/0/threaded http://www.securityfocus.com/archive/1/425883/100/0/threaded https://exchange.xforce.ibmcloud.com/vulnerabilities/17938