CVE-2010-1258 Information

Description

Microsoft Internet Explorer 6 7 and 8 does not properly determine the origin of script code which allows remote attackers to execute script in an unintended domain or security zone and obtain sensitive information via unspecified vectors aka \Event Handler Cross-Domain Vulnerability.\

Reference

http://www.us-cert.gov/cas/techalerts/TA10-222A.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-053 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A11954