Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The toStaticHTML function in Microsoft Internet Explorer 8, and the SafeHTML function in Microsoft Windows SharePoint Services 3.0 SP2, SharePoint Foundation 2010, Office SharePoint Server 2007 SP2, Groove Server 2010, and Office Web Apps, allows remote attackers to bypass the cross-site scripting (XSS) protection mechanism and conduct XSS attacks via a crafted use of the Cascading Style Sheets (CSS) @import rule, aka "HTML Sanitization Vulnerability," a different vulnerability than CVE-2010-1257.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Internet Explorer和Windows toStaticHTML和SafeHTML函数跨站脚本攻击漏洞
Vulnerability Description
Microsoft Internet Explorer 是微软发布的非常流行的WEB浏览器。 Microsoft Internet Explorer 8中的toStaticHTML函数和Microsoft Windows SharePoint Services 3.0 SP2,SharePoint Foundation 2010,Office SharePoint Server 2007 SP2,Groove Server 2010,Office Web Apps中的SafeHTML函数中存在跨站脚本攻击
CVSS Information
N/A
Vulnerability Type
N/A