CVE-2011-4689 Information

Description

Microsoft Internet Explorer 6 through 9 does not prevent capture of data about the times of Same Origin Policy violations during IFRAME loading attempts which makes it easier for remote attackers to determine whether a document exists in the browser cache via crafted JavaScript code.

Reference

http://lcamtuf.coredump.cx/cachetime/ http://secunia.com/advisories/47129