CVE-2009-1140

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 5.01 SP4 through 7 for various Windows operating systems

Description The issue allows remote attackers to bypass the Same Origin Policy, potentially leading to information disclosure. This is due to the incorrect handling of cached content, which can be exploited by constructing a specially crafted Web page. If successfully exploited, an attacker could view content from the local computer or another browser window in another domain or Internet Explorer zone.

Recommendations For Microsoft Internet Explorer versions 5.01 SP4 through 7, consider restricting access to cached content to minimize the risk of exploitation. As a temporary workaround, avoid viewing specially crafted Web pages that could potentially bypass Internet Explorer domain restrictions. At the moment, there is no information about a newer version that contains a fix for this vulnerability.