CVE-2012-1872

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 6 through 9

Description The issue allows remote attackers to inject arbitrary web script or HTML via crafted character sequences with EUC-JP encoding. This could result in information disclosure when a user views a website with specially crafted strings inserted by an attacker.

Recommendations For Microsoft Internet Explorer versions 6 through 9, consider disabling the use of EUC-JP encoding as a temporary workaround until a patch is available. Restrict access to websites that may contain specially crafted strings to minimize the risk of exploitation. Avoid using websites with potentially crafted character sequences in the affected browser versions until the issue is resolved.