CVE-2008-3472

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 6 through 7

Description A remote code execution or information disclosure issue exists, allowing attackers to bypass the intended cross-domain security policy and execute arbitrary code or obtain sensitive information. This can be achieved via a crafted HTML document. An attacker could exploit this issue by constructing a specially crafted Web page, potentially leading to remote code execution or information disclosure if a user views the Web page.

Recommendations For Microsoft Internet Explorer versions 6 through 7, at the moment, there is no information about a newer version that contains a fix for this vulnerability.