Release DateJun 11, 2009 |
Severitymedium |
ImpactPrivilege escalation |
DescriptionThis indicates a possible attack against a script-injection vulnerability in Microsoft Internet Explorer.The vulnerability is due to the way the software handles its cached data. This could allow attackers to inject script and execute it in the privilege of the local domain. |
Affected ProductsWindows XP SP3 and IE7Other versions may also be affected |
Recommended ActionsPlease refer to the Microsoft advisory for detailed information and updates:http://www.microsoft.com/technet/security/Bulletin/ms09-019.mspx http://www.microsoft.com/technet/security/Bulletin/ms09-035.mspx |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2010-0255CVE-2009-1140 |
Reference/shttp://technet.microsoft.com/en-us/security/bulletin/ms10-035.mspx (MS-ID)http://technet.microsoft.com/en-us/security/bulletin/ms09-019.mspx (MS-ID) |
