Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Race condition in Microsoft Internet Explorer 6 SP1; 6 and 7 for Windows XP SP2 and SP3; 6 and 7 for Server 2003 SP2; 7 for Vista Gold, SP1, and SP2; and 7 for Server 2008 SP2 allows remote attackers to execute arbitrary code or perform other actions upon a page transition, with the permissions of the old page and the content of the new page, as demonstrated by setInterval functions that set location.href within a try/catch expression, aka the "bait & switch vulnerability" or "Race Condition Cross-Domain Information Disclosure Vulnerability."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Internet Explorer 竞争条件问题漏洞
Vulnerability Description
Microsoft Internet Explorer(IE)是美国微软(Microsoft)公司的一款Windows操作系统附带的Web浏览器。 IE在处理Javascript执行的过程中存在漏洞,远程攻击者可能利用此漏洞在用户机器上执行恶意代码或导致浏览器崩溃。 如果Javascript要求IE从符合同源策略的页面导航至无关的第三方站点的话,当前正在执行的Javascript存在一个机会窗口以旧页面的权限对新加载页面的内容执行操作,如读取或设置victim.document.cookie、任意更改文档
CVSS Information
N/A
Vulnerability Type
N/A