CVE-2010-3324

Microsoft Internet Explorer 8 - Auth Bypass

Title source: llm

Description

The toStaticHTML function in Microsoft Internet Explorer 8, and the SafeHTML function in Microsoft Windows SharePoint Services 3.0 SP2, SharePoint Foundation 2010, Office SharePoint Server 2007 SP2, Groove Server 2010, and Office Web Apps, allows remote attackers to bypass the cross-site scripting (XSS) protection mechanism and conduct XSS attacks via a crafted use of the Cascading Style Sheets (CSS) @import rule, aka "HTML Sanitization Vulnerability," a different vulnerability than CVE-2010-1257.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Mario Heiderich · htmlremotewindows

https://www.exploit-db.com/exploits/34478

View Code ZIP pw:eip

References (7)

[Exploit] http://archives.neohapsis.com/archives/fulldisclosure/2010-08/0179.html

[Vendor Advisory] http://support.avaya.com/css/P8/documents/100113324

[US Government Resource] http://www.us-cert.gov/cas/techalerts/TA10-285A.html

[Exploit] http://www.wooyun.org/bug.php?action=view&id=189

[Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-071

[Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-072

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7297

Scores

EPSS 0.2644

EPSS Percentile 96.3%

Classification

CWE

CWE-79

Status published

Affected Products (7)

microsoft/groove_server

microsoft/internet_explorer

microsoft/sharepoint_foundation

microsoft/sharepoint_server

microsoft/sharepoint_services

microsoft/web_apps

n/a/n/a

Timeline

Published Sep 17, 2010

Tracked Since Feb 18, 2026