Microsoft : Security Vulnerabilities, CVEs, Published In November 2014 (Information Leak)
Microsoft Internet Explorer 8 through 11 allows remote attackers to read content from a different (1) domain or (2) zone via a crafted web site, aka "Internet Explorer Cross-domain Information Disclosure Vulnerability."
Max CVSS
4.3
EPSS Score
22.18%
Published
2014-11-11
Updated
2018-10-12
Microsoft Internet Explorer 9 and 10 allows remote attackers to read content from a different (1) domain or (2) zone via a crafted web site, aka "Internet Explorer Cross-domain Information Disclosure Vulnerability."
Max CVSS
4.3
EPSS Score
22.18%
Published
2014-11-11
Updated
2018-10-12
Microsoft Internet Explorer 6 through 11 allows remote attackers to read content from a different (1) domain or (2) zone via a crafted web site, aka "Internet Explorer Cross-domain Information Disclosure Vulnerability."
Max CVSS
4.3
EPSS Score
22.18%
Published
2014-11-11
Updated
2018-10-12
Microsoft Active Directory Federation Services (AD FS) 2.0, 2.1, and 3.0, when a configured SAML Relying Party lacks a sign-out endpoint, does not properly process logoff actions, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation, aka "Active Directory Federation Services Information Disclosure Vulnerability."
Max CVSS
5.0
EPSS Score
0.42%
Published
2014-11-11
Updated
2018-10-12
Microsoft Internet Explorer 7 through 11 allows remote attackers to obtain sensitive clipboard information via a crafted web site, aka "Internet Explorer Clipboard Information Disclosure Vulnerability."
Max CVSS
4.3
EPSS Score
22.18%
Published
2014-11-11
Updated
2018-10-12
5 vulnerabilities found