Lucene search

PRIOn knowledge basePRION:CVE-2010-0808

HistoryOct 13, 2010 - 7:00 p.m.

Information disclosure

2010-10-1319:00:00

PRIOn knowledge base

www.prio-n.com

6.2 Medium

AI Score

Confidence

Low

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

0.023 Low

EPSS

Percentile

89.4%

JSON

Microsoft Internet Explorer 6 and 7 on Windows XP and Vista does not prevent script from simulating user interaction with the AutoComplete feature, which allows remote attackers to obtain sensitive form information via a crafted web site, aka “AutoComplete Information Disclosure Vulnerability.”

CPENameOperatorVersion
internet_explorereq6
internet_explorereq7

CPE	Name	Operator	Version
	internet_explorer	eq	6
	internet_explorer	eq	7

References

support.avaya.com/css/P8/documents/100113324

docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-071

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6889

6.2 Medium

AI Score

Confidence

Low

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:N/A:N

0.023 Low

EPSS

Percentile

89.4%

JSON

Related for PRION:CVE-2010-0808