CVE-2011-2382
medium
CVSS v3
โ
CVSS v4 NEW
โ
VIR risk
4.3
Description
Microsoft Internet Explorer 8 and earlier, and Internet Explorer 9 beta, does not properly restrict cross-zone drag-and-drop actions, which allows user-assisted remote attackers to read cookie files via vectors involving an IFRAME element with a SRC attribute containing a file: URL, as demonstrated by a Facebook game, related to a "cookiejacking" issue.
Predictions
Exploit likelihood
20%
Patch ETA
โ
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No mitigations published for this CVE yet.
The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ if you've already worked around this in production โ publish your fix to the community-verified tier.
โ Propose a mitigation on Community โ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here withsource_tier=community-verified.
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| microsoft | ie | 9 | |
| microsoft | internet_explorer | {"endIncluding":"8"} | |
| microsoft | internet_explorer | 3.0 | |
| microsoft | internet_explorer | 3.0.1 | |
| microsoft | internet_explorer | 3.0.2 | |
| microsoft | internet_explorer | 3.1 | |
| microsoft | internet_explorer | 3.2 | |
| microsoft | internet_explorer | 4.0 | |
| microsoft | internet_explorer | 4.0.1 | |
| microsoft | internet_explorer | 4.01 | |
| microsoft | internet_explorer | 4.1 | |
| microsoft | internet_explorer | 4.5 | |
| microsoft | internet_explorer | 4.40.308 | |
| microsoft | internet_explorer | 4.40.520 | |
| microsoft | internet_explorer | 4.70.1155 | |
| microsoft | internet_explorer | 4.70.1158 | |
| microsoft | internet_explorer | 4.70.1215 | |
| microsoft | internet_explorer | 4.70.1300 | |
| microsoft | internet_explorer | 4.71.544 | |
| microsoft | internet_explorer | 4.71.1008.3 | |
| microsoft | internet_explorer | 4.71.1712.6 | |
| microsoft | internet_explorer | 4.72.2106.8 | |
| microsoft | internet_explorer | 4.72.3110.8 | |
| microsoft | internet_explorer | 4.72.3612.1713 | |
| microsoft | internet_explorer | 5 | |
| microsoft | internet_explorer | 5.0 | |
| microsoft | internet_explorer | 5.0.1 | |
| microsoft | internet_explorer | 5.00.0518.10 | |
| microsoft | internet_explorer | 5.00.0910.1309 | |
| microsoft | internet_explorer | 5.00.2014.0216 | |
| microsoft | internet_explorer | 5.00.2314.1003 | |
| microsoft | internet_explorer | 5.00.2516.1900 | |
| microsoft | internet_explorer | 5.00.2614.3500 | |
| microsoft | internet_explorer | 5.00.2919.800 | |
| microsoft | internet_explorer | 5.00.2919.3800 | |
| microsoft | internet_explorer | 5.00.2919.6307 | |
| microsoft | internet_explorer | 5.00.2920.0000 | |
| microsoft | internet_explorer | 5.00.3103.1000 | |
| microsoft | internet_explorer | 5.00.3105.0106 | |
| microsoft | internet_explorer | 5.00.3314.2101 | |
| microsoft | internet_explorer | 5.00.3315.1000 | |
| microsoft | internet_explorer | 5.00.3502.1000 | |
| microsoft | internet_explorer | 5.00.3700.1000 | |
| microsoft | internet_explorer | 5.01 | |
| microsoft | internet_explorer | 5.1 | |
| microsoft | internet_explorer | 5.2.3 | |
| microsoft | internet_explorer | 5.5 | |
| microsoft | internet_explorer | 5.50.3825.1300 | |
| microsoft | internet_explorer | 5.50.4030.2400 | |
| microsoft | internet_explorer | 5.50.4134.0100 | |
| microsoft | internet_explorer | 5.50.4134.0600 | |
| microsoft | internet_explorer | 5.50.4308.2900 | |
| microsoft | internet_explorer | 5.50.4522.1800 | |
| microsoft | internet_explorer | 5.50.4807.2300 | |
| microsoft | internet_explorer | 6 | |
| microsoft | internet_explorer | 6.0 | |
| microsoft | internet_explorer | 6.00.2462.0000 | |
| microsoft | internet_explorer | 6.00.2479.0006 | |
| microsoft | internet_explorer | 6.0.2600 | |
| microsoft | internet_explorer | 6.00.2600.0000 | |
| microsoft | internet_explorer | 6.0.2800 | |
| microsoft | internet_explorer | 6.0.2800.1106 | |
| microsoft | internet_explorer | 6.00.2800.1106 | |
| microsoft | internet_explorer | 6.0.2900 | |
| microsoft | internet_explorer | 6.0.2900.2180 | |
| microsoft | internet_explorer | 6.00.2900.2180 | |
| microsoft | internet_explorer | 6.00.3663.0000 | |
| microsoft | internet_explorer | 6.00.3718.0000 | |
| microsoft | internet_explorer | 6.00.3790.0000 | |
| microsoft | internet_explorer | 6.00.3790.1830 | |
| microsoft | internet_explorer | 6.00.3790.3959 | |
| microsoft | internet_explorer | 7 | |
| microsoft | internet_explorer | 7.0 | |
| microsoft | internet_explorer | 7.0.5730 | |
| microsoft | internet_explorer | 7.0.5730.11 | |
| microsoft | internet_explorer | 7.00.5730.1100 | |
| microsoft | internet_explorer | 7.00.6000.16386 | |
| microsoft | internet_explorer | 7.00.6000.16441 | |
References
- http://conference.hackinthebox.org/hitbsecconf2011ams/?page_id=1388
- http://ju12.tistory.com/attachment/cfile4.uf%40151FAB4C4DDC9E0002A6FE.ppt
- http://news.cnet.com/8301-1009_3-20066419-83.html
- http://www.eweek.com/c/a/Security/IE-Flaw-Lets-Attackers-Steal-Cookies-Access-User-Accounts-402503/
- http://www.informationweek.com/news/security/vulnerabilities/229700031
- http://www.networkworld.com/community/node/74259
- http://www.theregister.co.uk/2011/05/25/microsoft_internet_explorer_cookiejacking/
- http://www.youtube.com/watch?v=V95CX-3JpK0
- http://www.youtube.com/watch?v=VsSkcnIFCxM
- https://sites.google.com/site/tentacoloviola/cookiejacking/Cookiejacking2011_final.ppt
- http://conference.hackinthebox.org/hitbsecconf2011ams/?page_id=1388
- http://ju12.tistory.com/attachment/cfile4.uf%40151FAB4C4DDC9E0002A6FE.ppt
- http://news.cnet.com/8301-1009_3-20066419-83.html
- http://www.eweek.com/c/a/Security/IE-Flaw-Lets-Attackers-Steal-Cookies-Access-User-Accounts-402503/
- http://www.informationweek.com/news/security/vulnerabilities/229700031
- http://www.networkworld.com/community/node/74259
- http://www.theregister.co.uk/2011/05/25/microsoft_internet_explorer_cookiejacking/
- http://www.youtube.com/watch?v=V95CX-3JpK0
- http://www.youtube.com/watch?v=VsSkcnIFCxM
- https://sites.google.com/site/tentacoloviola/cookiejacking/Cookiejacking2011_final.ppt
CWEs
CWE-20
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.