[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249982

 
 

909

 
 

195748

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
OVAL

MSXML DTD Cross-Domain Scripting Vulnerability

ID: oval:org.mitre.oval:def:5999Date: (C)2008-11-19   (M)2023-12-14
Class: VULNERABILITYFamily: windows




Cross-domain vulnerability in Microsoft XML Core Services 3.0 and 4.0, as used in Internet Explorer, allows remote attackers to obtain sensitive information from another domain via a crafted XML document, related to improper error checks for external DTDs, aka "MSXML DTD Cross-Domain Scripting Vulnerability."

Platform:
Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Vista
Microsoft Windows XP
Microsoft Windows 8.1
Microsoft Windows Server 2012 R2
Product:
Microsoft XML Core Services 3.0
Microsoft XML Core Services 4.0
Reference:
CVE-2008-4029
CVE    1
CVE-2008-4029
CPE    3
cpe:/a:microsoft:xml_core_services:3.0
cpe:/a:microsoft:xml_core_services:4.0
cpe:/a:microsoft:xml_core_services:4.0:sp2

© SecPod Technologies