Information disclosure vulnerability in the toStaticHTML method in Microsoft Internet Explorer or in Microsoft Lync| ID: oval:org.secpod.oval:def:6037 | Date: (C)2012-06-19 (M)2023-12-14 |
| Class: VULNERABILITY | Family: windows |
The host is installed with Internet Explorer 8 and 9 or Microsoft Communicator 2007 R2 or Lync 2010 or Lync 2010 Attendee Microsoft InfoPath 2007 or 2010, Microsoft SharePoint Server 2007 or 2010, Microsoft SharePoint Foundation 2010, Microsoft SharePoint Services 3.0 or Microsoft Groove Server 2010 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle event attributes and script. Successful exploitation could allow attackers to execute arbitrary code.
| Platform: |
| Microsoft Windows 7 |
| Microsoft Windows 8 |
| Microsoft Windows Server 2003 |
| Microsoft Windows 10 |
| Microsoft Windows Server 2008 |
| Microsoft Windows Server 2008 R2 |
| Microsoft Windows Server 2012 |
| Microsoft Windows Vista |
| Microsoft Windows XP |
| Microsoft Windows 8.1 |
| Microsoft Windows Server 2012 R2 |
| Product: |
| Microsoft Communicator 2007 R2 |
| Microsoft Internet Explorer 8 |
| Microsoft Internet Explorer 9 |
| Microsoft Lync 2010 |
| Microsoft Lync 2010 Attendee |
| Microsoft Groove Server 2010 |
| Microsoft InfoPath 2007 |
| Microsoft InfoPath 2010 |
| Microsoft SharePoint Foundation 2010 |
| Microsoft SharePoint Server 2007 |
| Microsoft SharePoint Server 2010 |
| Microsoft SharePoint Services 3.0 |
