Unrated severityNVD Advisory· Published Feb 26, 2007· Updated Jun 16, 2026
CVE-2007-1114
CVE-2007-1114
Description
The child frames in Microsoft Internet Explorer 7 inherit the default charset from the parent window when a charset is not specified in an HTTP Content-Type header or META tag, which allows remote attackers to conduct cross-site scripting (XSS) attacks, as demonstrated using the UTF-7 character set.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: =7
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.