CVE advisoryKnown Exploit
CVE-2013-7331
Microsoft Internet Explorer Information Disclosure Vulnerability
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
The Microsoft.XMLDOM ActiveX control can expose local pathnames and intranet hostnames through error codes. This allows attackers to gather information about an organization's internal systems, potentially aiding further malicious activities. Organizations should address this vulnerability to mitigate business risk.