This host is installed with Internet Explorer and is prone to Information Disclosure vulnerability.

Successful exploitation will allow attacker to execute arbitrary codes in the context of the web browser and can reveal sensitive information of the remote user through the web browser. Impact Level: Application

No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. For updates refer to http://www.microsoft.com/windows/internet-explorer/download-ie.aspx

An unspecified function in the JavaScript implementation in Microsoft Internet Explorer creates and exposes temporary footprint when there is a current login to a web site, which makes it easier for remote attackers to trick a user into acting upon a spoofed pop-up message.

Microsoft Internet Explorer version 8 Beta2 and prior on Windows.

• http://www.darkreading.com/security/attacks/showArticle.jhtml?articleID=212900161
• http://www.trusteer.com/files/In-session-phishing-advisory-2.pdf

---

Updated on 2015-03-25