Lucene search
RootSSV:60617HistoryFeb 03, 2013 - 12:00 a.m.
Microsoft Internet Explorer 信息泄露漏洞(CVE-2013-1450)
2013-02-0300:00:00
Root
www.seebug.org
7
0.005 Low
EPSS
Percentile
76.6%
Bugtraq ID:57640
CVE ID: CVE-2013-1450
Microsoft Internet Explorer是一款流行的WEB浏览器。
在Microsoft Internet Explorer代理服务设置中,如果HTTP和Secure栏中具有相同代理地址和端口,I没有正确重用TCP会话,通过构建特制HTML文档,触发多个HTTPS请求,然后触发一个对该主机的HTTP请求,可获得特定主机的敏感信息。
0
Microsoft Internet Explorer 9
Microsoft Internet Explorer 8
厂商解决方案
目前没有详细解决方案提供:
http://www.microsoft.com/windows/products/winfamily/ie/default.mspx
http://www.youtube.com/ChristianHaiderPoC
Related
cvelist
cvelist
CVE-2013-1450
2022-10-03 16:14:46
CVE-2013-1451
2022-10-03 16:14:47
nvd
nvd
CVE-2013-1450
2013-01-29 12:27:01
CVE-2013-1451
2013-01-29 12:27:01
prion
prion
Design/Logic Flaw
2013-01-29 12:27:00
Design/Logic Flaw
2013-01-29 12:27:00
cve
cve
CVE-2013-1450
2022-10-03 16:14:46
CVE-2013-1451
2022-10-03 16:14:47
openvas
openvas