CVE-2013-3908

Name of the Vulnerable Software and Affected Versions Microsoft Internet Explorer versions 6 through 10

Description An information disclosure issue exists in the way Internet Explorer handles specially crafted web content when generating print previews. This could allow an attacker to gather information from any page that the victim is viewing. The issue arises when a crafted web page is not properly handled during a print-preview action, enabling attackers to bypass the Same Origin Policy and obtain sensitive information.

Recommendations For Microsoft Internet Explorer versions 6 through 10, consider disabling the print-preview feature as a temporary workaround until a patch is available. Restrict access to sensitive information when using Internet Explorer for browsing to minimize the risk of exploitation.