CVE-2007-2227

2007-06-12T21:30:00
ID CVE-2007-2227
Type cve
Reporter cve@mitre.org
Modified 2018-10-16T16:42:00

Description

The MHTML protocol handler in Microsoft Outlook Express 6 and Windows Mail in Windows Vista does not properly handle Content-Disposition "notifications," which allows remote attackers to obtain sensitive information from other Internet Explorer domains, aka "Content Disposition Parsing Cross Domain Information Disclosure Vulnerability."