1. Home
  2. Vulnerabilities
  3. CVE-2007-5158

CVE-2007-5158

CVSS v2.0 4.3 (Medium)
43% Progress
EPSS 6.93 % (94th)
6.93% Progress
Affected Products 1
Info CVSS EPSS Affected Configurations References Tools, Exploits & PoC Graph Web & Social Timeline

The focus handling for the onkeydown event in Microsoft Internet Explorer 6.0 allows remote attackers to change field focus and copy keystrokes via a certain use of a JavaScript htmlFor attribute, as demonstrated by changing focus from a textarea to a file upload field, a related issue to CVE-2007-3511.

Weaknesses
CWE-NVD-Other
Related CVEs
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2007-10-01 05:17:00
(17 years ago)
Updated Date
2021-12-13 19:01:51
(2 years ago)

Affected Products

Microsoft

Configuration #1

    CPE23 From Up To
  Microsoft Internet Explorer 6.0 cpe:2.3:a:microsoft:internet_explorer:6.0