Lucene search

K
cve[email protected]CVE-2012-1882
HistoryJun 12, 2012 - 10:55 p.m.

CVE-2012-1882

2012-06-1222:55:00
CWE-200
web.nvd.nist.gov
23
microsoft
internet explorer
ie
cross-domain
scrolling events
information disclosure
cve-2012-1882
vulnerability

6.4 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.008 Low

EPSS

Percentile

81.8%

Microsoft Internet Explorer 6 through 9 does not block cross-domain scrolling events, which allows remote attackers to read content from a different (1) domain or (2) zone via a crafted web site, aka “Scrolling Events Information Disclosure Vulnerability.”

6.4 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.008 Low

EPSS

Percentile

81.8%

Related for CVE-2012-1882