CVE-2010-5071

Currently unrated

Key Information:

Vendor: Microsoft
Status: Internet Explorer; Ie
Vendor: CVE Published:; 7 December 2011

Summary

The JavaScript implementation in Microsoft Internet Explorer 8.0 and earlier does not properly restrict the set of values contained in the object returned by the getComputedStyle method, which allows remote attackers to obtain sensitive information about visited web pages by calling this method.

References

http://w2spconf.com/2010/papers/p26.pdf

x_refsource_MISC

EPSS Score

0% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 7, 2011

Collectors

NVD DatabaseMitre Database