Microsoft Internet Explorer 'toStaticHTML' HTML Sanitizing Information Disclosure Vulnerability

Bugtraq ID: 43703
Class: Design Error
CVE: CVE-2010-3243
Remote: Yes
Local: No
Published: Oct 12 2010 12:00AM
Updated: Oct 15 2010 03:19PM
Credit: Sirdarckcat of Google Inc.
Vulnerable: Microsoft Windows SharePoint Services 3.0
+ 3DM Software Disk Management Software SP2
 + 3DM Software Disk Management Software SP1 Platform SDK
 + 3DM Software Disk Management Software SP1
 + Microsoft Windows Server 2003 Datacenter Edition SP1
 + Microsoft Windows Server 2003 Datacenter Edition
+ Microsoft Windows Server 2003 Datacenter x64 Edition SP2
 + Microsoft Windows Server 2003 Datacenter x64 Edition
+ Microsoft Windows Server 2003 Enterprise Edition SP1
 + Microsoft Windows Server 2003 Enterprise Edition
+ Microsoft Windows Server 2003 Enterprise x64 Edition SP2
 + Microsoft Windows Server 2003 Enterprise x64 Edition
+ Microsoft Windows Server 2003 Standard Edition SP2
 + Microsoft Windows Server 2003 Standard Edition SP1
 + Microsoft Windows Server 2003 Standard Edition
+ Microsoft Windows Server 2003 Standard x64 Edition
+ Microsoft Windows Server 2003 Web Edition SP2
 + Microsoft Windows Server 2003 Web Edition SP1
 + Microsoft Windows Server 2003 Web Edition
+ Microsoft Windows Server 2003 x64 SP2
 + Microsoft Windows Server 2003 x64 SP1
 Microsoft Windows SharePoint Services
Microsoft SharePoint Services 64-bit 3.0 SP2
Microsoft SharePoint Services 64-bit 3.0 SP1
Microsoft SharePoint Services 64-bit 3.0
Microsoft SharePoint Services 64-bit 3.0
Microsoft SharePoint Services 3.0 SP2
Microsoft SharePoint Services 3.0 SP1
Microsoft SharePoint Server 2007 x64 SP2
Microsoft SharePoint Server 2007 x64 SP1
Microsoft SharePoint Server 2007 x64 0
Microsoft SharePoint Server 2007 Standard Edition 0
Microsoft SharePoint Server 2007 Enterprise Edition 0
Microsoft SharePoint Server 2007 SP2
Microsoft SharePoint Server 2007 SP1
Microsoft SharePoint Server 2007 0
Microsoft Internet Explorer 8
Avaya Messaging Application Server MM 3.1
Avaya Messaging Application Server MM 3.0
Avaya Messaging Application Server MM 2.0
Avaya Messaging Application Server MM 1.1
Avaya Messaging Application Server 5
Avaya Messaging Application Server 4
Avaya Messaging Application Server 0
Avaya Meeting Exchange - Webportal 0
Avaya Meeting Exchange - Web Conferencing Server 0
Avaya Meeting Exchange - Streaming Server 0
Avaya Meeting Exchange - Recording Server 0
Avaya Meeting Exchange - Client Registration Server 0
Avaya Communication Server 1000 Telephony Manager 0
Avaya CallPilot 0
Avaya Aura Conferencing Standard
Avaya Aura Conferencing 6.0 Standard
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus