CVE-2011-1246

Microsoft Internet Explorer 8 - Unauthorized Information Exposure via MIME Sniffing

Title source: llm
STIX 2.1

Description

Microsoft Internet Explorer 8 does not properly handle content settings in HTTP responses, which allows remote web servers to obtain sensitive information from a different (1) domain or (2) zone via a crafted response, aka "MIME Sniffing Information Disclosure Vulnerability."

References (2)

Core 2
Core References
Patch, Vendor Advisory vendor-advisory x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-050

Scores

EPSS 0.0555
EPSS Percentile 91.9%

Details

CWE
CWE-200
Status published
Products (1)
microsoft/internet_explorer 8
Published Jun 16, 2011
Tracked Since Feb 18, 2026