Microsoft Windows XMLHTTP proxy problem

2007-02-04T00:00:00
ID SECURITYVULNS:VULN:7173
Type securityvulns
Reporter FULL-DISCLOSURE
Modified 2007-02-04T00:00:00

Description

Because of insufficient request validation Msxml2.XMLHTTP ActiveX object can be used to proxy HTTML request via client browser.