Unrated severityNVD Advisory· Published Aug 9, 2006· Updated Jun 16, 2026

CVE-2006-3640

Description

Microsoft Internet Explorer 5.01 and 6 allows certain script to persist across navigations between pages, which allows remote attackers to obtain the window location of visited web pages in other domains or zones, aka "Window Location Information Disclosure Vulnerability."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Microsoft/Ie
cpe:2.3:a:microsoft:ie:6:windows_server_2003_sp1:*:*:*:*:*:*
Microsoft/Internet Explorer2 versions
cpe:2.3:a:microsoft:internet_explorer:5.01:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:microsoft:internet_explorer:5.01:*:*:*:*:*:*:*
- (no CPE)range: <=6 SP1?

Patches

Vulnerability mechanics

References

secunia.com/advisories/21396nvd
securitytracker.com/idnvd
www.osvdb.org/27850nvd
www.securityfocus.com/bid/19339nvd
www.vupen.com/english/advisories/2006/3212nvd
docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-042nvd
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A171nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.020
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000