VYPR
Unrated severityNVD Advisory· Published Aug 11, 2006· Updated Jun 16, 2026

CVE-2006-4092

CVE-2006-4092

Description

Simpliciti Locked Browser does not properly limit a user's actions to ones within the intended Internet Explorer environment, which allows local users to perform unauthorized actions by visiting a web site that executes a JavaScript window.blur loop to remove focus from the browser window, then pressing CTRL-SHIFT-ESC to invoke the Task Manager.

Affected products

2
  • cpe:2.3:a:simpliciti:locked_browser:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:simpliciti:locked_browser:*:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.