What is the severity of CVE-2011-1245?

CVE-2011-1245 has been assessed with a medium severity level due to its potential to allow sensitive information disclosure.

How do I fix CVE-2011-1245?

To fix CVE-2011-1245, users should upgrade to a patched version of Internet Explorer 8 or later.

What does CVE-2011-1245 exploit?

CVE-2011-1245 exploits improper restrictions in Internet Explorer regarding script access to content across different domains or zones.

Which versions of Internet Explorer are affected by CVE-2011-1245?

CVE-2011-1245 affects Internet Explorer versions 6 and 7.

Can CVE-2011-1245 impact Windows XP users?

Yes, CVE-2011-1245 can impact Windows XP users if they run Internet Explorer 6 or 7.

Vulnerability/
CVE-2011-1245

medium

4.3

CWE

200

13/4/2011

6/8/2024

CVE-2011-1245: Infoleak

First published: Wed Apr 13 2011(Updated: )

Microsoft Internet Explorer 6 and 7 does not properly restrict script access to content from a (1) different domain or (2) different zone, which allows remote attackers to obtain sensitive information via a crafted web site, aka "Javascript Information Disclosure Vulnerability."

Credit: secure@microsoft.com secure@microsoft.com

Affected Software	Affected Version	How to fix
All of
Internet Explorer	=6
Any of
Microsoft Windows 2003 Server	=sp2
Microsoft Windows 2003 Server	=sp2
Microsoft Windows Server 2003	=sp2
Microsoft Windows XP	=sp3
Microsoft Windows XP	=sp2
All of
Internet Explorer	=7
Any of
Microsoft Windows 2003 Server	=sp2
Microsoft Windows 2003 Server	=sp2
Microsoft Windows Server 2003	=sp2
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2
Microsoft Windows XP	=sp3
Microsoft Windows XP	=sp2
Internet Explorer	=6
Microsoft Windows 2003 Server	=sp2
Microsoft Windows 2003 Server	=sp2
Microsoft Windows Server 2003	=sp2
Microsoft Windows XP	=sp3
Microsoft Windows XP	=sp2
Internet Explorer	=7
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Server 2008 Itanium	=sp2
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2
Microsoft Windows Vista	=sp2
Microsoft Windows Vista	=sp1
Microsoft Windows Vista	=sp2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-1245?
CVE-2011-1245 has been assessed with a medium severity level due to its potential to allow sensitive information disclosure.
How do I fix CVE-2011-1245?
To fix CVE-2011-1245, users should upgrade to a patched version of Internet Explorer 8 or later.
What does CVE-2011-1245 exploit?
CVE-2011-1245 exploits improper restrictions in Internet Explorer regarding script access to content across different domains or zones.
Which versions of Internet Explorer are affected by CVE-2011-1245?
CVE-2011-1245 affects Internet Explorer versions 6 and 7.
Can CVE-2011-1245 impact Windows XP users?
Yes, CVE-2011-1245 can impact Windows XP users if they run Internet Explorer 6 or 7.

collector/nvd-historical
agent/author
agent/type
agent/references
agent/weakness
agent/description
agent/severity
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-api
agent/software-canonical-lookup-request
collector/nvd-index
vendor/microsoft
canonical/internet explorer
version/internet explorer/6
canonical/microsoft windows 2003 server
version/microsoft windows 2003 server/sp2
canonical/microsoft windows server 2003
version/microsoft windows server 2003/sp2
canonical/microsoft windows xp
version/microsoft windows xp/sp3
version/microsoft windows xp/sp2
version/internet explorer/7
canonical/microsoft windows server 2008 itanium
version/microsoft windows server 2008 itanium/sp2
canonical/microsoft windows vista
version/microsoft windows vista/sp1
version/microsoft windows vista/sp2

Frequently Asked Questions

What is the severity of CVE-2011-1245?
CVE-2011-1245 has been assessed with a medium severity level due to its potential to allow sensitive information disclosure.
How do I fix CVE-2011-1245?
To fix CVE-2011-1245, users should upgrade to a patched version of Internet Explorer 8 or later.
What does CVE-2011-1245 exploit?
CVE-2011-1245 exploits improper restrictions in Internet Explorer regarding script access to content across different domains or zones.
Which versions of Internet Explorer are affected by CVE-2011-1245?
CVE-2011-1245 affects Internet Explorer versions 6 and 7.
Can CVE-2011-1245 impact Windows XP users?
Yes, CVE-2011-1245 can impact Windows XP users if they run Internet Explorer 6 or 7.

CVE-2011-1245: Infoleak

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-1245?

How do I fix CVE-2011-1245?

What does CVE-2011-1245 exploit?

Which versions of Internet Explorer are affected by CVE-2011-1245?

Can CVE-2011-1245 impact Windows XP users?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2011-1245?

How do I fix CVE-2011-1245?

What does CVE-2011-1245 exploit?

Which versions of Internet Explorer are affected by CVE-2011-1245?

Can CVE-2011-1245 impact Windows XP users?