Lucene search
HistoryFeb 26, 2007 - 11:28 p.m.
CVE-2007-1114
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.776
Percentile
98.2%
The child frames in Microsoft Internet Explorer 7 inherit the default charset from the parent window when a charset is not specified in an HTTP Content-Type header or META tag, which allows remote attackers to conduct cross-site scripting (XSS) attacks, as demonstrated using the UTF-7 character set.
Affected configurations
Node
microsoftieMatch7.0vista
Related
cvelist
cvelist
CVE-2007-1114
2007-02-26 23:00:00
prion
prion
Cross site scripting
2007-02-26 23:28:00
cve
cve
CVE-2007-1114
2007-02-26 23:28:00
nessus
nessus
Opera < 9.20 Multiple Vulnerabilities
2007-04-14 00:00:00
securityvulns
securityvulns
Multiple browsers inherited charset crossite scripting
2009-03-06 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.776
Percentile
98.2%
Related for NVD:CVE-2007-1114