Microsoft : Security Vulnerabilities, CVEs, Published In December 2015 (XSS)
Microsoft Edge mishandles HTML attributes in HTTP responses, which allows remote attackers to bypass a cross-site scripting (XSS) protection mechanism via unspecified vectors, aka "Microsoft Edge XSS Filter Bypass Vulnerability."
Max CVSS
4.3
EPSS Score
23.81%
Published
2015-12-09
Updated
2018-10-12
Microsoft Internet Explorer 9 through 11 improperly implements a cross-site scripting (XSS) protection mechanism, which allows remote attackers to bypass the Same Origin Policy via a crafted web site, aka "Internet Explorer XSS Filter Bypass Vulnerability."
Max CVSS
6.8
EPSS Score
2.39%
Published
2015-12-09
Updated
2018-10-12
Microsoft Internet Explorer 8 through 11 and Microsoft Edge mishandle HTML attributes in HTTP responses, which allows remote attackers to bypass a cross-site scripting (XSS) protection mechanism via unspecified vectors, aka "Microsoft Browser XSS Filter Bypass Vulnerability."
Max CVSS
4.3
EPSS Score
2.54%
Published
2015-12-09
Updated
2018-10-12
Microsoft Internet Explorer 8 through 11 mishandles HTML attributes in HTTP responses, which allows remote attackers to bypass a cross-site scripting (XSS) protection mechanism via unspecified vectors, aka "Internet Explorer XSS Filter Bypass Vulnerability."
Max CVSS
4.3
EPSS Score
23.81%
Published
2015-12-09
Updated
2018-10-12
4 vulnerabilities found