Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2008-2949
HistoryJun 30, 2008 - 10:41 p.m.

CVE-2008-2949

2008-06-3022:41:00
[email protected]
web.nvd.nist.gov

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.3 Medium

AI Score

Confidence

Low

0.944 High

EPSS

Percentile

99.2%

JSON

Cross-domain vulnerability in Microsoft Internet Explorer 6 and 7 allows remote attackers to change the location property of a frame via the String data type, and use a frame from a different domain to observe domain-independent events, as demonstrated by observing onkeydown events with caballero-listener. NOTE: according to Microsoft, this is a duplicate of CVE-2008-2947, possibly a different attack vector.

Affected configurations

NVD
Node
microsoftinternet_explorerMatch6
OR
microsoftinternet_explorerMatch7

Related

cvelist 3
prion 3
cve 3
nvd 2
securityvulns 2
openvas 2
nessus 1
cvelist
cvelist
CVE-2008-2949
2008-06-30 22:00:00
CVE-2008-2947
2008-06-30 22:00:00
CVE-2008-2948
2008-06-30 22:00:00
prion
prion
Cross site scripting
2008-06-30 22:41:00
Cross site scripting
2008-06-30 22:41:00
Cross site scripting
2008-06-30 22:41:00
cve
cve
CVE-2008-2949
2008-06-30 22:41:00
CVE-2008-2947
2008-06-30 22:41:00
CVE-2008-2948
2008-06-30 22:41:00
nvd
nvd
CVE-2008-2947
2008-06-30 22:41:00
CVE-2008-2948
2008-06-30 22:41:00
securityvulns
securityvulns
Microsoft Security Bulletin MS08-058 - Critical Cumulative Security Update for Internet Explorer (956390)
2008-10-14 00:00:00
Microsoft Internet Explorer multiple security vulnerabilities
2008-10-21 00:00:00
openvas
openvas
Cumulative Security Update for Internet Explorer (956390)
2008-10-15 00:00:00
Cumulative Security Update for Internet Explorer (956390)
2008-10-15 00:00:00
nessus
nessus
MS08-058: Microsoft Internet Explorer Multiple Vulnerabilities (956390)
2008-10-15 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.3 Medium

AI Score

Confidence

Low

0.944 High

EPSS

Percentile

99.2%

JSON
Related for NVD:CVE-2008-2949
cvelist3prion3cve3nvd2securityvulns2openvas2nessus1