cve/2008/CVE-2008-5551.md

### [CVE-2008-5551](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5551)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

The XSS Filter in Microsoft Internet Explorer 8.0 Beta 2 allows remote attackers to bypass the XSS protection mechanism and conduct XSS attacks by injecting data at two different positions within an HTML document, related to STYLE elements and the CSS expression property, aka a "double injection."

### POC

#### Reference
- http://securityreason.com/securityalert/4724

#### Github
- https://github.com/fkie-cad/iva
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`### [CVE-2008-5551](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5551)`
			`![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)`

			`### Description`

			`The XSS Filter in Microsoft Internet Explorer 8.0 Beta 2 allows remote attackers to bypass the XSS protection mechanism and conduct XSS attacks by injecting data at two different positions within an HTML document, related to STYLE elements and the CSS expression property, aka a "double injection."`

			`### POC`

			`#### Reference`
			`- http://securityreason.com/securityalert/4724`

			`#### Github`
			`- https://github.com/fkie-cad/iva`