| Vulnerability Name: | CVE-2011-2383 (CCN-67890) | ||||||||
| Assigned: | 2011-05-26 | ||||||||
| Published: | 2011-05-26 | ||||||||
| Updated: | 2021-07-23 | ||||||||
| Summary: | Microsoft Internet Explorer 9 and earlier does not properly restrict cross-zone drag-and-drop actions, which allows user-assisted remote attackers to read cookie files via vectors involving an IFRAME element with a SRC attribute containing an http: URL that redirects to a file: URL, as demonstrated by a Facebook game, related to a "cookiejacking" issue, aka "Drag and Drop Information Disclosure Vulnerability." Note: this vulnerability exists because of an incomplete fix in the Internet Explorer 9 release. | ||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
| ||||||||
| CVSS v2 Severity: | 4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N) 3.2 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
3.2 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-20 | ||||||||
| Vulnerability Consequences: | Obtain Information | ||||||||
| References: | Source: MISC Type: UNKNOWN http://conference.hackinthebox.org/hitbsecconf2011ams/?page_id=1388 Source: MITRE Type: CNA CVE-2011-2382 Source: MITRE Type: CNA CVE-2011-2383 Source: MISC Type: UNKNOWN http://ju12.tistory.com/attachment/cfile4.uf@151FAB4C4DDC9E0002A6FE.ppt Source: CCN Type: CNET News Web site Security researcher finds 'cookiejacking' risk in IE Source: MISC Type: UNKNOWN http://news.cnet.com/8301-1009_3-20066419-83.html Source: CCN Type: SA45565 Microsoft Internet Explorer Internet Explorer Iframe Cookie Disclosure Weakness Source: CCN Type: Microsoft Security Bulletin MS11-099 Cumulative Security Update for Internet Explorer (2618444) Source: CCN Type: Microsoft Security Bulletin MS12-010 Cumulative Security Update for Internet Explorer (2647516) Source: CCN Type: Microsoft Security Bulletin MS12-023 Cumulative Security Update for Internet Explorer (2675157) Source: CCN Type: Microsoft Security Bulletin MS12-037 Cumulative Security Update for Internet Explorer (2699988) Source: CCN Type: Microsoft Security Bulletin MS12-044 Cumulative Security Update for Internet Explorer (2719177) Source: CCN Type: Microsoft Security Bulletin MS12-052 Cumulative Security Update for Internet Explorer (2722913) Source: MISC Type: UNKNOWN http://www.eweek.com/c/a/Security/IE-Flaw-Lets-Attackers-Steal-Cookies-Access-User-Accounts-402503/ Source: MISC Type: UNKNOWN http://www.informationweek.com/news/security/vulnerabilities/229700031 Source: CCN Type: Microsoft Security Bulletin MS11-057 Cumulative Security Update for Internet Explorer (2559049) Source: CCN Type: Microsoft Security Bulletin MS11-081 Cumulative Security Update for Internet Explorer (2586448) Source: CCN Type: Microsoft Web site Internet Explorer: Home Page Source: MISC Type: UNKNOWN http://www.networkworld.com/community/node/74259 Source: CCN Type: OSVDB ID: 72724 Microsoft IE Cookie Jacking Account Authentication Bypass Source: CCN Type: BID-47989 Microsoft Internet Explorer Cross Zone Local Cookie File Access Security Bypass Vulnerability Source: MISC Type: UNKNOWN http://www.theregister.co.uk/2011/05/25/microsoft_internet_explorer_cookiejacking/ Source: MISC Type: UNKNOWN http://www.youtube.com/watch?v=V95CX-3JpK0 Source: MISC Type: UNKNOWN http://www.youtube.com/watch?v=VsSkcnIFCxM Source: MS Type: UNKNOWN MS11-057 Source: XF Type: UNKNOWN ms-ie-crosszonedraganddrop-info-disc(67890) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:12820 Source: MISC Type: UNKNOWN https://sites.google.com/site/tentacoloviola/cookiejacking/Cookiejacking2011_final.ppt | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| Oval Definitions | |||||||||
| |||||||||
| BACK | |||||||||