VULHUB ™

Microsoft Internet Explorer is prone to cross-site scripting attacks. When a multimedia file is loaded by MSIE (such as a Macromedia SWF file), a separate page is generated which contains the unfiltered URI of the file. As a result, an attacker may create a malicious link which contains arbitrary script code. If a user of the vulnerable web browser visits such a link, the attacker-supplied script code will be interpreted by their browser. This will occur in the context of the website the link points to.

Microsoft Internet Explorer is prone to cross-site scripting attacks. When a multimedia file is loaded by MSIE (such as a Macromedia SWF file), a separate page is generated which contains the unfiltered URI of the file. As a result, an attacker may create a malicious link which contains arbitrary script code. If a user of the vulnerable web browser visits such a link, the attacker-supplied script code will be interpreted by their browser. This will occur in the context of the website the link points to.