风险等级:
  建议日期 : 2015年2月4日

  描述

A flaw exists in Internet Explorer that allows a malicious web page to inject JavaScript code into a third-party frame, bypassing the Same-Origin Policy (SOP). This could allow an attacker to hijack sessions with third-party web sites.

  保护信息

Apply associated Trend Micro DPI Rules.

  解决方案

  Trend Micro Deep Security DPI Rule Number: 1006472
  Trend Micro Deep Security DPI Rule Name: 1006472 - Microsoft Internet Explorer Same Origin Policy Bypass Vulnerability