Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Microsoft Internet Explorer before 8 displays a cached certificate for a (1) 4xx or (2) 5xx CONNECT response page returned by a proxy server, which allows man-in-the-middle attackers to spoof an arbitrary https site by letting a browser obtain a valid certificate from this site during one request, and then sending the browser a crafted 502 response page upon a subsequent request.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Internet Explorer 授权问题漏洞
Vulnerability Description
Microsoft Internet Explorer(IE)是美国微软(Microsoft)公司的一款Windows操作系统附带的Web浏览器。 Microsoft Internet Explorer存在授权问题漏洞。Microsoft Internet Explorer 可以展示通过代理服务返回的(1)4xx或(2)5xx连接响应中携带的隐藏证书, 在某个请求过程中,攻击者可以通过让浏览器获得该站点发布的有效证书,然后在后来的请求中向某个浏览器发送特制的502响应页欺骗任意https站点。
CVSS Information
N/A
Vulnerability Type
N/A