Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2009-2057
HistoryOct 03, 2022 - 4:24 p.m.

CVE-2009-2057

2022-10-0316:24:07
mitre
www.cve.org
1
microsoft
internet explorer
ssl
tampering
vulnerability
http host header
proxy server
man-in-the-middle

6.8 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.8%

JSON

Microsoft Internet Explorer before 8 uses the HTTP Host header to determine the context of a document provided in a (1) 4xx or (2) 5xx CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an β€œSSL tampering” attack.

Related

cve 1
prion 1
nvd 1
openvas 2
cve
cve
CVE-2009-2057
2022-10-03 16:24:07
prion
prion
Hardcoded credentials
2009-06-15 19:30:00
nvd
nvd
CVE-2009-2057
2009-06-15 19:30:00
openvas
openvas
Microsoft Internet Explorer Web Script Execution Vulnerabilities
2009-06-17 00:00:00
Microsoft Internet Explorer Web Script Execution Vulnerabilities
2009-06-17 00:00:00

6.8 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.8%

JSON
Related for CVELIST:CVE-2009-2057
cve1prion1nvd1openvas2