Microsoft IE 9 contains a flaw that is due to the application failing to sanitize NULL bytes in an arbitrary file. This may allow a context-dependent attacker to bypass XSS filter protection and conduct a cross-site scripting attack.
Remote / Network Access
Loss of Integrity
OSVDB is not aware of a solution for this vulnerability.