Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Internet Explorer 5.5 and earlier does not properly verify the domain of a frame within a browser window, which allows remote web site operators to read certain files on the client by sending information from a local frame to a frame in a different domain using MSScriptControl.ScriptControl and GetObject, aka a variant of the "Frame Domain Verification" vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Internet Explorer安全漏洞
Vulnerability Description
Microsoft Internet Explorer(IE)是美国微软(Microsoft)公司的一款Windows操作系统附带的Web浏览器。 Internet Explorer 5.5及其早期版本不能正确查证带浏览器窗口的frame的域名。远程网站操作者通过使用MSScriptControl.ScriptControl和GetObject发送来自本地frame的信息到另外域名的frame读取客户端的某些文件,也称为“Frame域名查证”漏洞的变体。
CVSS Information
N/A
Vulnerability Type
N/A