Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2009-0369Microsoft Internet Explorer vulnerability

4 documents4 sources
Severity
4.3MEDIUMNVD
EPSS
20.7%
top 4.39%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Microsoft Internet Explorer
Timeline
PublishedJan 30
Latest updateMay 2

Description

Microsoft Internet Explorer 7 allows remote attackers to trick a user into visiting an arbitrary URL via an onclick action that moves a crafted element to the current mouse position, related to a "Clickjacking" vulnerability.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

1
GHSA
GHSA-788f-pv3h-g3rp: Microsoft Internet Explorer 7 allows remote attackers to trick a user into visiting an arbitrary URL via an onclick action that moves a crafted elemen2022-05-02

💥Exploits & PoCs

1
Exploit-DB
Microsoft Internet Explorer 7 - Clickjacking2009-01-29

💬Community

1
Bugzilla
CVE-2008-5340 Java WebStart privilege escalation2008-12-05
CVE-2009-0369 — Microsoft vulnerability | cvebase