• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Microsoft Internet Explorer JavaScript Cross Domain Information Disclosure Vulnerability

Solution:
The vendor has released an advisory along with fixes. Please see the references for details.


Microsoft Internet Explorer 6.0 SP1

• Microsoft Cumulative Security Update for Internet Explorer 6 SP1 (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=fe8b3796-a407 -4f41-89eb-35b4bcc24ff6

Microsoft Internet Explorer 7.0

• Microsoft Cumulative Security Update for Internet Explorer 7 for Windows Server 2003 (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=a980b867-c67f -4c61-b6db-e55c2ca68dc0


• Microsoft Cumulative Security Update for Internet Explorer 7 for Windows Server 2003 x64 Edition (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=5e7d6372-9c8c -449d-88fd-afd4f92ad9e6


• Microsoft Cumulative Security Update for Internet Explorer 7 for Windows XP (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=827b735c-660b -4723-b688-3297e107153a


• Microsoft Cumulative Security Update for Internet Explorer 7 for Windows XP x64 Edition (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=e5d2c81e-ffab -4e3b-a59a-a55000597213


• Microsoft Cumulative Security Update for Internet Explorer 7 in Windows Server 2008 (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=a0e3f975-57da -43fa-ac12-3d14fd6ce939


• Microsoft Cumulative Security Update for Internet Explorer 7 in Windows Server 2008 x64 Edition (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=758edce7-2a82 -4b2e-bd71-5b7075cc4b17


• Microsoft Cumulative Security Update for Internet Explorer 7 in Windows Vista (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=e60215c3-b8b9 -4e45-9d9f-b3fb0b47cce1


• Microsoft Cumulative Security Update for Internet Explorer 7 in Windows Vista x64 Edition (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=88185088-8c2c -4bc6-89b2-87f4d4849cf7

Microsoft Internet Explorer 6.0

• Microsoft Cumulative Security Update for Internet Explorer for Windows Server 2003 (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=72a23752-86fb -4cc9-ab8e-63ffdfae5bec


• Microsoft Cumulative Security Update for Internet Explorer for Windows Server 2003 x64 Edition (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=2a03d3c4-e39d -43a3-8d42-216e9551be96


• Microsoft Cumulative Security Update for Internet Explorer for Windows XP (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=3d7f63ee-d7c3 -48a5-902e-60625405e97d


• Microsoft Cumulative Security Update for Internet Explorer for Windows XP x64 Edition (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=088f70eb-c5c5 -426a-880a-18ed386d0b56