Vulnerability Name:

CVE-2011-4689 (CCN-71635)

Assigned:2011-12-06
Published:2011-12-06
Updated:2021-07-23
Summary:Microsoft Internet Explorer 6 through 9 does not prevent capture of data about the times of Same Origin Policy violations during IFRAME loading attempts, which makes it easier for remote attackers to determine whether a document exists in the browser cache via crafted JavaScript code.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
4.0 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
4.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:U/RC:UR)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-264
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2011-4689

Source: CCN
Type: lcamtuf's blog, December 02, 2011
Rapid history extraction through non-destructive cache timing (v8)

Source: MISC
Type: Exploit
http://lcamtuf.coredump.cx/cachetime/

Source: CCN
Type: SA47129
Microsoft Internet Explorer Cache Objects History Enumeration Weakness

Source: SECUNIA
Type: Vendor Advisory
47129

Source: CCN
Type: Microsoft Web site
Internet Explorer

Source: CCN
Type: OSVDB ID: 77537
Microsoft IE Cache Objects IFRAME Handling Browsing History Disclosure

Source: CCN
Type: BID-50918
Microsoft Internet Explorer CSS ':visited' Browser History Information Disclosure Vulnerability

Source: CCN
Type: BID-51065
Microsoft Internet Explorer IFRAME Loading Information Disclosure Vulnerability

Source: XF
Type: UNKNOWN
ms-cache-objects-info-disc(71635)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:microsoft:internet_explorer:7:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:9:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:6:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:8:*:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/a:microsoft:ie:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:9:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:6:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:7:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    BACK
    microsoft internet explorer 7
    microsoft internet explorer 9
    microsoft internet explorer 6
    microsoft internet explorer 8
    microsoft ie 8.0
    microsoft ie 9
    microsoft ie 6
    microsoft ie 7