CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
99.8%
Added: 11/16/2010
CVE: CVE-2010-3962
BID: 44536
OSVDB: 68987
Cascading Style Sheets (CSS) is a simple mechanism for adding style to web documents.
A memory corruption vulnerability allows command execution when a user loads a web page containing a CSS clip attribute with a specific position, causing an invalid flag reference.
Apply a patch when available. See Microsoft Security Advisory 2458511 for patch information.
<http://secunia.com/advisories/42091>
Exploit works on Internet Explorer 6 on Windows XP SP3 with security update KB2360131, and requires a user to open the exploit page in Internet Explorer.
Windows XP