Unrated severityNVD Advisory· Published Apr 14, 2015· Updated Jun 17, 2026
CVE-2015-1646
CVE-2015-1646
Description
Microsoft XML Core Services (aka MSXML) 3.0 allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted DTD, aka "MSXML3 Same Origin Policy SFB Vulnerability."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:microsoft:xml_core_services:3.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:microsoft:xml_core_services:3.0:*:*:*:*:*:*:*
- (no CPE)range: = 3.0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.