Same origin policy SFB vulnerability in MSXML3 in Microsoft WindowsID: oval:org.secpod.oval:def:24082 | Date: (C)2015-04-15 (M)2021-09-11 |
Class: VULNERABILITY | Family: windows |
The host is installed with Microsoft XML Core Services 3.0 in Microsoft Windows Server 2003 SP2, Vista SP2, Server 2008 SP2, Windows 7 SP1, Server 2008 R2 SP1 and is prone to a same origin policy SFB vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to access sensitive user information, such as username or password and files on the hard drive.
Platform: |
Microsoft Windows 7 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows Vista |
Microsoft Windows Server 2008 R2 |
Product: |
Microsoft XML Core Services 3.0 |