CVE-2013-3909

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 6 through 8

Description The issue allows remote attackers to read content from a different domain or zone via crafted characters in Cascading Style Sheets (CSS) token sequences. An information disclosure vulnerability exists in the way that Internet Explorer processes CSS special characters. An attacker could exploit the vulnerability by constructing a specially crafted webpage that could allow information disclosure if a user viewed the webpage, potentially viewing content from another domain or Internet Explorer zone.

Recommendations For Microsoft Internet Explorer versions 6 through 8, there is no information about a newer version that contains a fix for this vulnerability.