Signature Detail
Short Name |
HTTP:STC:IE:XFRAME-REST-BYPASS |
|---|---|
Severity |
Medium |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Microsoft Internet Explorer Cross Frame Scripting Restriction Bypass |
Release Date |
2011/10/24 |
Update Number |
2015 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Microsoft Internet Explorer Cross Frame Scripting Restriction Bypass
This signature detects attempts to exploit a known vulnerability against Microsoft Internet Explorer. A successful attack can allow a malicious server to bypass restrictions that prevent keystroke events from passing between domains resulting in the logging of user keystrokes.
Extended Description
Microsoft Internet Explorer is reported to be prone to an issue that may leak sensitive information across foreign domains. This issue could permit framesets in different domains to leak various events, including keyboard events. This could effectively permit a hostile web page to capture keystrokes from a foreign domain.
Affected Products
- Microsoft Internet Explorer 5.5
- Microsoft Internet Explorer 5.5 SP1
- Microsoft Internet Explorer 5.5 SP2
- Microsoft Internet Explorer 6.0
- Microsoft Internet Explorer 6.0 SP1
- Microsoft .NET Framework 1.0 SP1
References
- BugTraq: 9761
- CVE: CVE-2004-2383