Internet Explorer contains a cross-site scripting vulnerability that can be used to execute arbitrary script code in a user’s browser. This is caused by a character processing flaw, when parsing Shift JIS encoded characters.
Internet Explorer 6, 7, 8, and 9
Information Disclosure By convincing a user to click on a specially crafted link, an attacker could execute script commands within the context of the user's browser.
BeyondTrust Prevention and Detection:
Apply appropriate patch from MS11-057.