| Title | Microsoft Internet Explorer における重要な情報を取得される脆弱性 |
|---|---|
| Summary | Microsoft Internet Explorer には、スクリプトコードの起源を適切に検査しないため、意図しないドメインおよびセキュリティゾーン内にあるスクリプトを実行され、重要な情報が取得される脆弱性が存在します。 |
| Possible impacts | 第三者により、重要な情報を取得される可能性があります。 |
| Solution | ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。 |
| Publication Date | Aug. 10, 2010, midnight |
| Registration Date | Aug. 31, 2010, 4:44 p.m. |
| Last Update | Aug. 31, 2010, 4:44 p.m. |
| CVSS2.0 : 警告 | |
| Score | 4.3 |
|---|---|
| Vector | AV:N/AC:M/Au:N/C:P/I:N/A:N |
| マイクロソフト |
| Microsoft Internet Explorer 6 |
| Microsoft Internet Explorer 7 |
| Microsoft Internet Explorer 8 |
| Microsoft Windows 7 (x32) |
| Microsoft Windows 7 (x64) |
| Microsoft Windows Server 2003 |
| Microsoft Windows Server 2003 (itanium) |
| Microsoft Windows Server 2003 (x64) |
| Microsoft Windows Server 2008 (itanium) |
| Microsoft Windows Server 2008 (x64) |
| Microsoft Windows Server 2008 (x86) |
| Microsoft Windows Server 2008 r2(itanium) |
| Microsoft Windows Server 2008 r2(x64) |
| Microsoft Windows Vista |
| Microsoft Windows Vista (x64) |
| Microsoft Windows XP (x64) |
| Microsoft Windows XP sp3 |
| No | Changed Details | Date of change |
|---|---|---|
| 0 | [2010年08月31日] 掲載 |
Feb. 17, 2018, 10:37 a.m. |
| Summary | Microsoft Internet Explorer 6, 7, and 8 does not properly determine the origin of script code, which allows remote attackers to execute script in an unintended domain or security zone, and obtain sensitive information, via unspecified vectors, aka "Event Handler Cross-Domain Vulnerability." |
|---|---|
| Publication Date | Aug. 12, 2010, 3:47 a.m. |
| Registration Date | Jan. 29, 2021, 10:59 a.m. |
| Last Update | Nov. 21, 2024, 10:13 a.m. |
| Configuration1 | or higher | or less | more than | less than | |
| cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:o:microsoft:windows_2003_server:*:sp2:*:*:*:*:*:* | ||||
| 2 | cpe:2.3:o:microsoft:windows_2003_server:*:sp2:itanium:*:*:*:*:* | ||||
| 3 | cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:* | ||||
| 4 | cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:* | ||||
| 5 | cpe:2.3:o:microsoft:windows_xp:-:sp2:x64:*:*:*:*:* | ||||
| Configuration2 | or higher | or less | more than | less than | |
| cpe:2.3:a:microsoft:internet_explorer:7:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:o:microsoft:windows_2003_server:*:sp2:*:*:*:*:*:* | ||||
| 2 | cpe:2.3:o:microsoft:windows_2003_server:*:sp2:itanium:*:*:*:*:* | ||||
| 3 | cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:* | ||||
| 4 | cpe:2.3:o:microsoft:windows_server_2008:*:*:itanium:*:*:*:*:* | ||||
| 5 | cpe:2.3:o:microsoft:windows_server_2008:*:*:x32:*:*:*:*:* | ||||
| 6 | cpe:2.3:o:microsoft:windows_server_2008:*:*:x64:*:*:*:*:* | ||||
| 7 | cpe:2.3:o:microsoft:windows_server_2008:*:sp2:x32:*:*:*:*:* | ||||
| 8 | cpe:2.3:o:microsoft:windows_server_2008:*:sp2:x64:*:*:*:*:* | ||||
| 9 | cpe:2.3:o:microsoft:windows_server_2008:-:sp2:itanium:*:*:*:*:* | ||||
| 10 | cpe:2.3:o:microsoft:windows_vista:*:sp1:*:*:*:*:*:* | ||||
| 11 | cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:* | ||||
| 12 | cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:* | ||||
| 13 | cpe:2.3:o:microsoft:windows_vista:-:sp1:*:*:*:*:*:* | ||||
| 14 | cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:* | ||||
| 15 | cpe:2.3:o:microsoft:windows_xp:-:sp2:x64:*:*:*:*:* | ||||
| Configuration3 | or higher | or less | more than | less than | |
| cpe:2.3:a:microsoft:internet_explorer:8:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:o:microsoft:windows_2003_server:*:sp2:itanium:*:*:*:*:* | ||||
| 2 | cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:* | ||||
| 3 | cpe:2.3:o:microsoft:windows_7:-:*:*:*:*:*:*:* | ||||
| 4 | cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:* | ||||
| 5 | cpe:2.3:o:microsoft:windows_server_2008:*:sp2:x64:*:*:*:*:* | ||||
| 6 | cpe:2.3:o:microsoft:windows_server_2008:*:r2:itanium:*:*:*:*:* | ||||
| 7 | cpe:2.3:o:microsoft:windows_server_2008:*:*:itanium:*:*:*:*:* | ||||
| 8 | cpe:2.3:o:microsoft:windows_server_2008:*:*:x32:*:*:*:*:* | ||||
| 9 | cpe:2.3:o:microsoft:windows_server_2008:*:*:x64:*:*:*:*:* | ||||
| 10 | cpe:2.3:o:microsoft:windows_server_2008:*:sp2:x32:*:*:*:*:* | ||||
| 11 | cpe:2.3:o:microsoft:windows_server_2008:*:r2:x64:*:*:*:*:* | ||||
| 12 | cpe:2.3:o:microsoft:windows_server_2008:-:sp2:itanium:*:*:*:*:* | ||||
| 13 | cpe:2.3:o:microsoft:windows_vista:*:sp1:*:*:*:*:*:* | ||||
| 14 | cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:* | ||||
| 15 | cpe:2.3:o:microsoft:windows_vista:-:sp1:*:*:*:*:*:* | ||||
| 16 | cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:* | ||||
| 17 | cpe:2.3:o:microsoft:windows_xp:-:sp2:x64:*:*:*:*:* | ||||