Vulnerabilities

CVE-2008-3474

by Fred · 14/10/2008

Microsoft Internet Explorer 6 and 7 does not properly determine the domain or security zone of origin of web script, which allows remote attackers to bypass the intended cross-domain security policy and obtain sensitive information via a crafted HTML document, aka "Cross-Domain Information Disclosure Vulnerability."

Date published : 2008-10-14

http://www.us-cert.gov/cas/techalerts/TA08-288A.html

http://marc.info/?l=bugtraq&m=122479227205998&w=2

Similar

Tags: Cybersecurity Alert