Lucene search

K
cvelistMitreCVELIST:CVE-2008-2947
HistoryJun 30, 2008 - 10:00 p.m.

CVE-2008-2947

2008-06-3022:00:00
mitre
www.cve.org

8.4 High

AI Score

Confidence

High

0.944 High

EPSS

Percentile

99.2%

Cross-domain vulnerability in Microsoft Internet Explorer 5.01 SP4, 6, and 7 allows remote attackers to access restricted information from other domains via JavaScript that uses the Object data type for the value of a (1) location or (2) location.href property, related to incorrect determination of the origin of web script, aka “Window Location Property Cross-Domain Vulnerability.” NOTE: according to Microsoft, CVE-2008-2948 and CVE-2008-2949 are duplicates of this issue, probably different attack vectors.

8.4 High

AI Score

Confidence

High

0.944 High

EPSS

Percentile

99.2%