Event Handler Cross-Domain VulnerabilityID: oval:org.mitre.oval:def:11954 | Date: (C)2010-06-08 (M)2023-12-14 |
Class: VULNERABILITY | Family: windows |
Microsoft Internet Explorer 6, 7, and 8 does not properly determine the origin of script code, which allows remote attackers to execute script in an unintended domain or security zone, and obtain sensitive information, via unspecified vectors, aka "Event Handler Cross-Domain Vulnerability."
Platform: |
Microsoft Windows XP |
Microsoft Windows Server 2003 |
Microsoft Windows Vista |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows 7 |
Product: |
Microsoft Internet Explorer 6 |
Microsoft Internet Explorer 7 |
Microsoft Internet Explorer 8 |