Microsoft Internet Explorer Same Origin Policy Bypass Vulnerability
Severity: : High
Advisory Date: 04 de февраля de 2015
DESCRIPTION
A flaw exists in Internet Explorer that allows a malicious web page to inject JavaScript code into a third-party frame, bypassing the Same-Origin Policy (SOP). This could allow an attacker to hijack sessions with third-party web sites.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1006472
Trend Micro Deep Security DPI Rule Name: 1006472 - Microsoft Internet Explorer Same Origin Policy Bypass Vulnerability