CVE-2008-3474 in Internet Explorerinfo

Summary

Microsoft Internet Explorer 6 and 7 does not properly determine the domain or security zone of origin of web script, which allows remote attackers to bypass the intended cross-domain security policy and obtain sensitive information via a crafted HTML document, aka "Cross-Domain Information Disclosure Vulnerability."

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Responsible

Reservation

08/04/2008

Disclosure

10/14/2008

Moderation

VulDB entry created

Entries

VDB-44530

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

5.4

EPSS

0.48916

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-3474
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-3474
CVE Details	https://www.cvedetails.com/cve/CVE-2008-3474/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!