CVE-2013-3192Cross-site Scripting in Microsoft Internet Explorer

CWE-79Cross-site Scripting3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
18.2%
top 4.79%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Microsoft Internet ExplorerApache Httpd
Timeline
PublishedAug 14
Latest updateMay 14

Description

Cross-site scripting (XSS) vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to inject arbitrary web script or HTML via crafted character sequences with EUC-JP encoding, aka "EUC-JP Character Encoding Vulnerability."

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages2 packages

NVDmicrosoft/internet_explorer5 versions+4
apacheapache/httpd

🔴Vulnerability Details

1
GHSA
GHSA-3w6q-cgc3-v6vv: Cross-site scripting (XSS) vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to inject arbitrary web script or HTML vi2022-05-14

📋Vendor Advisories

1
Apache
Apache httpd: CVE-2011-3192
CVE-2013-3192 — Cross-site Scripting in Microsoft | cvebase