HTTP: Microsoft Internet Explorer Cross Frame Scripting Restriction Bypass
This signature detects attempts to exploit a known vulnerability against Microsoft Internet Explorer. A successful attack can allow a malicious server to bypass restrictions that prevent keystroke events from passing between domains resulting in the logging of user keystrokes.
Extended Description
Microsoft Internet Explorer is reported to be prone to an issue that may leak sensitive information across foreign domains. This issue could permit framesets in different domains to leak various events, including keyboard events. This could effectively permit a hostile web page to capture keystrokes from a foreign domain.
Affected Products
Microsoft internet_explorer
Short Name
HTTP:STC:IE:XFRAME-REST-BYPASS
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Bypass CVE-2004-2383 Cross Explorer Frame Internet Microsoft Restriction Scripting bid:9761
Release Date
10/24/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Microsoft
CVSS Score
5.1