VYPR

Internet Explorer 9 beta

by Microsoft

CVEs (1)

  • CVE-2011-2382Jun 3, 2011
    risk 0.02cvss epss 0.19

    Microsoft Internet Explorer 8 and earlier, and Internet Explorer 9 beta, does not properly restrict cross-zone drag-and-drop actions, which allows user-assisted remote attackers to read cookie files via vectors involving an IFRAME element with a SRC attribute containing a file:…