Microsoft Internet Explorer 8 through 11 and Microsoft Edge mishandle HTML attributes in HTTP responses, which allows remote attackers to bypass a cross-site scripting (XSS) protection mechanism via unspecified vectors, aka “Microsoft Browser XSS Filter Bypass Vulnerability.”
CPE | Name | Operator | Version |
---|---|---|---|
internet_explorer | eq | 10 | |
internet_explorer | eq | 8 | |
internet_explorer | eq | 11 | |
internet_explorer | eq | 9 |