A cookiejacking vulnerability is present in Microsoft Internet Explorer 9 beta and before| Deprecated |
| ID: oval:org.secpod.oval:def:1244 | Date: (C)2011-06-21 (M)2023-11-09 |
| Class: VULNERABILITY | Family: windows |
The host is installed with Microsoft Internet Explorer and is prone to a cookiejacking vulnerability. A flaw is present in the application, which allows remote attackers to read cookie files via vectors involving an IFRAME element. Successful exploitation could allow an attacker to disclose sensitive information like cookie values of a user.
| Platform: |
| Microsoft Windows 7 |
| Microsoft Windows 2000 |
| Microsoft Windows Server 2003 |
| Microsoft Windows Server 2008 |
| Microsoft Windows Vista |
| Microsoft Windows XP |
| Product: |
| Microsoft Internet Explorer |
