vendor:
Internet Explorer
by:
SecurityFocus
7.5
CVSS
HIGH
Security-Bypass
264
CWE
Product Name: Internet Explorer
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: Yes
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2008
Microsoft Internet Explorer Security-Bypass Vulnerability
Microsoft Internet Explorer is prone to a security-bypass vulnerability because it fails to properly enforce restrictions on script behavior. An attacker may exploit this issue to bypass restrictions on the execution of JavaScript code. This may aid in further attacks. Examples of the exploit include using the STYLE, IMG, BODY, LINK, META, IFRAME, DIV, STYLE, A, STYLE, OBJECT, STYLE, SCRIPT, VIDEO, LAYER, EMBED, and APPLET tags.
Mitigation:
Users should avoid visiting untrusted websites and clicking on suspicious links. Additionally, users should keep their web browsers and operating systems up-to-date with the latest patches and security updates.