Microsoft : Security Vulnerabilities Published In 2005 (Information Leak)
Microsoft Internet Explorer allows remote attackers to bypass cross-domain security restrictions and obtain sensitive information by using the @import directive to download files from other domains that are not valid Cascading Style Sheets (CSS) files, as demonstrated using Google Desktop, aka "CSSXSS" and "CSS Cross-Domain Information Disclosure Vulnerability."
Max Base Score | 7.1 |
Published | 2005-12-08 |
Updated | 2021-07-23 |
EPSS | 96.25% |
1 vulnerabilities found