Описание
Microsoft Internet Explorer permits cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MIME type and the stylesheet document is malformed, which allows remote HTTP servers to obtain sensitive information via a crafted document.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:microsoft:internet_explorer:*:*:*:*:*:*:*:*
EPSS
Процентиль: 93%
0.09306
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
почти 4 года назад
Microsoft Internet Explorer permits cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MIME type and the stylesheet document is malformed, which allows remote HTTP servers to obtain sensitive information via a crafted document.
EPSS
Процентиль: 93%
0.09306
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-200