{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-23T20:21:59.282","vulnerabilities":[{"cve":{"id":"CVE-2008-4029","sourceIdentifier":"secure@microsoft.com","published":"2008-11-12T23:30:01.557","lastModified":"2026-04-23T00:35:47.467","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-domain vulnerability in Microsoft XML Core Services 3.0 and 4.0, as used in Internet Explorer, allows remote attackers to obtain sensitive information from another domain via a crafted XML document, related to improper error checks for external DTDs, aka \"MSXML DTD Cross-Domain Scripting Vulnerability.\""},{"lang":"es","value":"Vulnerabilidad de dominios cruzados en Microsoft XML Core Services v3.0 y v4.0, como lo utilizado en Internet Explorer, permite a atacantes remotos obtener información sensible de otro dominio a través de documentos XML manipulados, relacionados con el inadecuado control de error para las DTD externas, también conocido como \"Vulnerabilidad MSXML DTD Cross-Domain Scripting\"."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:N/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:internet_explorer:*:*:*:*:*:*:*:*","matchCriteriaId":"8682FAF3-98E3-485C-89CB-C0358C4E2AB0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_2000:sp4:*:*:*:*:*:*:*","matchCriteriaId":"11AFB73A-1C61-40F1-8415-E4D40BB2699B"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2003:*:*:*:*:*:*:*:*","matchCriteriaId":"31A64C69-D182-4BEC-BA8A-7B405F5B2FC0"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2003:*:sp1:*:*:*:*:*:*","matchCriteriaId":"DA778424-6F70-4AB6-ADD5-5D4664DFE463"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2003:*:sp1:itanium:*:*:*:*:*","matchCriteriaId":"BCE2197B-7C58-4693-B9BB-0B31EABB6B66"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:*","matchCriteriaId":"4D3B5E4F-56A6-4696-BBB4-19DF3613D020"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:*:*:itanium:*:*:*:*:*","matchCriteriaId":"7F6EA111-A4E6-4963-A0C8-F9336C605B6E"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:*:*:x32:*:*:*:*:*","matchCriteriaId":"9CFB1A97-8042-4497-A45D-C014B5E240AB"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_server_2008:*:*:x64:*:*:*:*:*","matchCriteriaId":"7F9C7616-658D-409D-8B53-AC00DC55602A"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*","matchCriteriaId":"3852BB02-47A1-40B3-8E32-8D8891A53114"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_vista:*:*:x64:*:*:*:*:*","matchCriteriaId":"1DD1D5ED-FE7C-4ADF-B3AF-1F13E51B4FB5"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_vista:*:sp1:*:*:*:*:*:*","matchCriteriaId":"C162FFF0-1E8F-4DCF-A08F-6C6E324ED878"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_vista:sp1:*:*:*:*:*:*:*","matchCriteriaId":"49F99773-D1AF-4596-856A-CA164D4B68E5"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_xp:*:*:professional_x64:*:*:*:*:*","matchCriteriaId":"E0BBA081-24D5-4990-882F-69CB05CC28CF"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_xp:*:sp2:professional_x64:*:*:*:*:*","matchCriteriaId":"1AB9988B-5A9C-4F6D-BCCC-4D03AC6E4CF9"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_xp:-:*:*:*:*:*:*:*","matchCriteriaId":"B47EBFCC-1828-45AB-BC6D-FB980929A81A"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows_xp:sp3:*:*:*:*:*:*:*","matchCriteriaId":"E69F8C21-5996-4083-A02A-F04AE948CEA9"}]}]}],"references":[{"url":"http://marc.info/?l=bugtraq&m=122703006921213&w=2","source":"secure@microsoft.com"},{"url":"http://securitytracker.com/id?1021164","source":"secure@microsoft.com"},{"url":"http://www.securityfocus.com/bid/32155","source":"secure@microsoft.com","tags":["Patch"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA08-316A.html","source":"secure@microsoft.com","tags":["US Government Resource"]},{"url":"http://www.vupen.com/english/advisories/2008/3111","source":"secure@microsoft.com"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-069","source":"secure@microsoft.com"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5999","source":"secure@microsoft.com"},{"url":"http://marc.info/?l=bugtraq&m=122703006921213&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://securitytracker.com/id?1021164","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/32155","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"http://www.us-cert.gov/cas/techalerts/TA08-316A.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["US Government Resource"]},{"url":"http://www.vupen.com/english/advisories/2008/3111","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-069","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5999","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}