CVE-2008-2948

NONECVSS 0.0

0.0

Cross-domain vulnerability in Microsoft Internet Explorer 7 and 8 allows remote attackers to change the location property of a frame via the Object data type, and use a frame from a different domain to observe domain-independent events, as demonstrated by observing onkeydown events with caballero-listener. NOTE: according to Microsoft, this is a duplicate of CVE-2008-2947, possibly a different attack vector.

🔗 References (14)

cve@mitrehttp://blogs.zdnet.com/security/?p=1348
cve@mitrehttp://secunia.com/advisories/30851
cve@mitrehttp://sirdarckcat.blogspot.com/2008/05/ghosts-for-ie8-and-ie75730.html
cve@mitrehttp://technet.microsoft.com/en-us/security/cc405107.aspx#EHD
cve@mitrehttp://www.gnucitizen.org/blog/ghost-busters/
cve@mitrehttp://www.kb.cert.org/vuls/id/516627
cve@mitrehttp://www.vupen.com/english/advisories/2008/1941/references
af854a3a-2127-422b-91ae-364da2661108http://blogs.zdnet.com/security/?p=1348
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/30851
af854a3a-2127-422b-91ae-364da2661108http://sirdarckcat.blogspot.com/2008/05/ghosts-for-ie8-and-ie75730.html
af854a3a-2127-422b-91ae-364da2661108http://technet.microsoft.com/en-us/security/cc405107.aspx#EHD
af854a3a-2127-422b-91ae-364da2661108http://www.gnucitizen.org/blog/ghost-busters/
af854a3a-2127-422b-91ae-364da2661108http://www.kb.cert.org/vuls/id/516627
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2008/1941/references

Is Your Infrastructure Affected by CVE-2008-2948?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2008-2948

📅 Published

🔄 Last Modified

🔗 References (14)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2008-2948?