Unrated severityNVD Advisory· Published Dec 7, 2011· Updated Jun 16, 2026
CVE-2011-4689
CVE-2011-4689
Description
Microsoft Internet Explorer 6 through 9 does not prevent capture of data about the times of Same Origin Policy violations during IFRAME loading attempts, which makes it easier for remote attackers to determine whether a document exists in the browser cache via crafted JavaScript code.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:internet_explorer:7:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:internet_explorer:8:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:internet_explorer:9:*:*:*:*:*:*:*
- (no CPE)range: 6-9
Patches
Vulnerability mechanics
References
2- lcamtuf.coredump.cx/cachetime/nvdExploit
- secunia.com/advisories/47129nvdVendor Advisory
News mentions
0No linked articles in our index yet.