CVE-2008-2259Improper Input Validation in Microsoft Internet Explorer

CWE-20Improper Input Validation2 documents2 sources
Severity
9.3CRITICALNVD
EPSS
54.1%
top 1.98%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Internet Explorer
Timeline
PublishedAug 13
Latest updateMay 1

Description

Microsoft Internet Explorer 6 and 7 does not perform proper "argument validation" during print preview, which allows remote attackers to execute arbitrary code via unknown vectors, aka "HTML Component Handling Vulnerability."

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

🔴Vulnerability Details

1
GHSA
GHSA-9788-3jp6-v2fg: Microsoft Internet Explorer 6 and 7 does not perform proper "argument validation" during print preview, which allows remote attackers to execute arbit2022-05-01
CVE-2008-2259 — Improper Input Validation in Microsoft | cvebase