oval:org.mitre.oval:def:1207

Definition Id: oval:org.mitre.oval:def:1207
 
Oval ID: oval:org.mitre.oval:def:1207
Title: IE6,SP1 File Disclosure via Redirects Vulnerability
Description: The legacy <script> data-island capability for XML in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to read arbitrary XML files, and portions of other files, via a URL whose "src" attribute redirects to a local file.
Family: windows Class: vulnerability
Reference(s): CVE-2002-0648
Version: 4
Platform(s): Microsoft Windows 2000
Microsoft Windows XP
Product(s): Microsoft Internet Explorer
Definition Synopsis: