Multiple Browser Vendor Same Origin Policy Design Error Vulnerability

Multiple Browser Vendor Same Origin Policy Design Error Vulnerability

Solution:
A patch is reportedly in the Mozilla CVS repository, available at (login required):
http://bugzilla.mozilla.org/show_bug.cgi?id=154930

Microsoft is aware of this vulnerability. A fix will be included in Microsoft Internet Explorer 6 Service Pack 1. The official response from Microsoft is available in the reference section.

Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com <mailto:vuldb@securityfocus.com>.