CVE-2007-3091

high

Microsoft

CVSS v3 Base Score

7.1

AV:N/AC:M/Au:N/C:N/I:N/A:C

EPSS Score

18.7%

Exploitation probability in 30 days

Top 5% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Confidentiality

None

Integrity

None

Availability

Published: June 6, 2007 (6916 days ago)

Last Modified: April 23, 2026

Vendor: Microsoft

Source: NVD

Description

Race condition in Microsoft Internet Explorer 6 SP1; 6 and 7 for Windows XP SP2 and SP3; 6 and 7 for Server 2003 SP2; 7 for Vista Gold, SP1, and SP2; and 7 for Server 2008 SP2 allows remote attackers to execute arbitrary code or perform other actions upon a page transition, with the permissions of the old page and the content of the new page, as demonstrated by setInterval functions that set location.href within a try/catch expression, aka the "bait & switch vulnerability" or "Race Condition Cross-Domain Information Disclosure Vulnerability."

CWE

CWE-362

Affected Products

microsoft windows 2003 servermicrosoft windows xpmicrosoft internet explorermicrosoft windows 2000microsoft windows server 2008microsoft windows vista

References

🔗 archives.neohapsis.com 🔗 lcamtuf.coredump.cx 🔗 osvdb.org 🔗 osvdb.org 🔗 secunia.com

CVE-2007-3091

Vulnerability Report

Description

CWE

Affected Products

References