Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1245

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2011-1245
Last Modified 04 Oct 2011 10:53:12
Published 13 Apr 2011 02:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1245

Summary

Microsoft Internet Explorer 6 and 7 does not properly restrict script access to content from a (1) different domain or (2) different zone, which allows remote attackers to obtain sensitive information via a crafted web site, aka "Javascript Information Disclosure Vulnerability."

Vulnerable Systems

Application

  • Microsoft Ie 6

  • Microsoft Ie 7


References

CERT - TA11-102A

MS - MS11-018

SECTRACK - 1025327

BID - 47192


Last Updated: 27 May 2016 10:56:14