| Last Updated Date | Nov 24, 2009 |
| Release Date | Nov 14, 2008 |
| Severity | Low |
| Impact | Information disclosure |
| Description | This indicates a possible attempt to exploit an information disclosure vulnerability in Microsoft XML Core Services, which is caused by its way of handling error checks for external document type definitions. The vulnerability could lead to information disclosure or cross-domain attacks. |
| Affected Products | MSXML versions prior to v6 |
| Recommended Actions | Apply the patch, available from the vendor's web site: http://www.microsoft.com/technet/security/Bulletin/MS08-069.mspx. |
| Common Vulnerabilities and Exposures (CVE) | http://cve.mitre.org/cgi-bin/cvename.cgi?name=2008-4029
|
| Microsoft Bulletin ID | MS08-069 http://www.microsoft.com/technet/security/Bulletin/ms08-069.mspx |