IE v5.5 Encoded Characters Information Disclosure VulnerabilityID: oval:org.mitre.oval:def:495 | Date: (C)2004-01-27 (M)2021-07-27 |
Class: VULNERABILITY | Family: windows |
Internet Explorer 5.01 through 6.0 does not properly perform security checks on certain encoded characters within a URL, which allows a remote attacker to steal potentially sensitive information from a user by redirecting the user to another site that has that information, aka "Encoded Characters Information Disclosure."
Platform: |
Microsoft Windows 2000 |
Product: |
Microsoft Internet Explorer |