HTTP: Internet Explorer MHTML Cross-Domain Scripting
This signature detects Web pages containing dangerous hypertext links. A malicious Web site can exploit a known vulnerability in Internet Explorer 5 and 6 and allow an attacker domain's content (such as scripts) to access another domain's content (such as cookies), which could result in an information disclosure. Typical information stored in cookies that could be disclosed includes usernames, passwords, social security numbers, credit cards numbers, bank accounts, and other sensitive data.
Extended Description
Outlook Express is prone to a cross-domain information-disclosure vulnerability. This vulnerability may let a malicious website access properties of a site in an arbitrary external domain in the context of the victim's browser. Attackers could exploit this issue to access sensitive information (such as cookies or passwords) that is associated with the external domain.
Affected Products
Microsoft outlook_express
References
BugTraq: 24410
CVE: CVE-2007-2227
URL: http://www.microsoft.com/technet/security/Bulletin/MS07-034.mspx
Short Name
HTTP:STC:IE:MHTML-XDOM
Severity
Warning
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
CVE-2007-2227 Cross-Domain Explorer Internet MHTML Scripting bid:24410
Release Date
07/05/2007
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Microsoft
CVSS Score
4.3