CVE-2015-1646

Publication date

2015-04-14 20:00:00

Family

microsoft

State

PUBLISHED

Description

Microsoft XML Core Services (aka MSXML) 3.0 allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted DTD, aka "MSXML3 Same Origin Policy SFB Vulnerability."