Vulnerability Name:

CVE-2009-2350 (CCN-51552)

Assigned:2009-07-02
Published:2009-07-02
Updated:2018-10-10
Summary:Microsoft Internet Explorer 6.0.2900.2180 and earlier does not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Refresh header or (2) specifying the content of a Refresh header, a related issue to CVE-2009-1312.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
4.1 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
4.1 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:H/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-79
Vulnerability Consequences:Gain Access
References:Source: CCN
Type: BugTraq Mailing List, Thu Jul 02 2009 - 17:21:57 CDT
Cross-Site Scripting vulnerabilities in Mozilla, Internet Explorer, Opera and Chrome

Source: MITRE
Type: CNA
CVE-2009-2350

Source: MISC
Type: Exploit
http://websecurity.com.ua/3275/

Source: MISC
Type: UNKNOWN
http://websecurity.com.ua/3386/

Source: CCN
Type: Microsoft Web site
Microsoft Internet Explorer

Source: BUGTRAQ
Type: UNKNOWN
20090702 Cross-Site Scripting vulnerabilities in Mozilla, Internet Explorer, Opera and Chrome

Source: BUGTRAQ
Type: UNKNOWN
20090703 Re: Cross-Site Scripting vulnerabilities in Mozilla, Internet Explorer, Opera and Chrome

Source: BID
Type: Exploit
35570

Source: CCN
Type: BID-35570
Microsoft Internet Explorer 'javascript:' URI in 'Refresh' Header Cross-Site Scripting Vulnerability

Source: XF
Type: UNKNOWN
ie-refresh-header-xss(51552)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:microsoft:internet_explorer:6:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:ie:6.0:sp1:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    microsoft internet explorer 6
    microsoft ie 6.0
    microsoft ie 6.0 sp1