CVE-2010-3325

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 6 through 8

Description The issue allows remote attackers to obtain sensitive information from a different domain or zone via a crafted web site. An information disclosure vulnerability exists in the way that Internet Explorer processes CSS special characters. An attacker could exploit the vulnerability by constructing a specially crafted Web page that could allow information disclosure if a user viewed the Web page. This could enable an attacker to view content from another domain or Internet Explorer zone.

Recommendations For Microsoft Internet Explorer versions 6 through 8, consider restricting access to specially crafted Web pages until a patch is available. As a temporary workaround, avoid viewing Web pages with suspicious CSS special characters in these versions of Internet Explorer.