Lucene search
HistoryMay 07, 2010 - 6:24 p.m.
CVE-2010-1852
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.002
Percentile
64.5%
Microsoft Internet Explorer, when the Invisible Hand extension is enabled, uses cookies during background HTTP requests in a possibly unexpected manner, which might allow remote web servers to identify specific persons and their product searches via HTTP request logging, related to a “cross-site data leakage” issue.
Affected configurations
Node
microsoftinternet_explorer
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | internet_explorer | * | cpe:2.3:a:microsoft:internet_explorer:*:*:*:*:*:*:*:* |
Related
prion
prion
Cross site scripting
2010-05-07 18:24:00
cve
cve
CVE-2010-1852
2010-05-07 18:24:16
cvelist
cvelist
CVE-2010-1852
2010-05-07 17:43:00
openvas
openvas
Microsoft Internet Explorer Cross Site Data Leakage Vulnerability
2010-05-13 00:00:00
Microsoft Internet Explorer Cross Site Data Leakage Vulnerability
2010-05-13 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.002
Percentile
64.5%
Related for NVD:CVE-2010-1852