Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Microsoft Internet Explorer 8 and 9, when the Proxy Settings configuration has the same Proxy address and Port values in the HTTP and Secure rows, does not ensure that the SSL lock icon is consistent with the Address bar, which makes it easier for remote attackers to spoof web sites via a crafted HTML document that triggers many HTTPS requests to an arbitrary host, followed by an HTTPS request to a trusted host and then an HTTP request to an untrusted host, a related issue to CVE-2013-1450.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Internet Explorer 配置错误漏洞
Vulnerability Description
Microsoft Internet Explorer是美国微软(Microsoft)公司发布的Windows操作系统中默认捆绑的Web浏览器。 Microsoft Internet Explorer 8和9版本中存在漏洞,该漏洞源于在代理配置的HTTP和安全行中具有同样的代理地址和端口值的情况下,程序没有确保SSL锁定图标与地址栏保持一致。通过特制的HTML文档触发向任意主机发送多个HTTPS请求,随后再向某可信主机发送一个HTTPS请求且向某不可信主机发送一个HTTP请求,远程攻击者可利用该漏洞欺骗网
CVSS Information
N/A
Vulnerability Type
N/A