CVE-2007-3091

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer versions 6 SP1 through 7 for Windows XP SP2 and SP3 Microsoft Internet Explorer versions 6 and 7 for Server 2003 SP2 Microsoft Internet Explorer version 7 for Vista Gold, SP1, and SP2 Microsoft Internet Explorer version 7 for Server 2008 SP2

Description: The issue allows remote attackers to execute arbitrary code or perform other actions upon a page transition, with the permissions of the old page and the content of the new page. This can be demonstrated by setInterval functions that set location.href within a try/catch expression. An attacker could exploit the vulnerability by constructing a specially crafted Web page that could allow information disclosure if a user viewed the Web page. The attacker could view data from a Web page in another Internet Explorer domain.

Recommendations: For Microsoft Internet Explorer versions 6 SP1 through 7 for Windows XP SP2 and SP3, update to a newer version to mitigate the risk. For Microsoft Internet Explorer versions 6 and 7 for Server 2003 SP2, update to a newer version to mitigate the risk. For Microsoft Internet Explorer version 7 for Vista Gold, SP1, and SP2, update to a newer version to mitigate the risk. For Microsoft Internet Explorer version 7 for Server 2008 SP2, update to a newer version to mitigate the risk. As a temporary workaround, consider disabling the use of setInterval functions that set location.href within a try/catch expression until a patch is available.