[Forgot Password]
Login  Register Subscribe

24003

 
 

131573

 
 

108741

 
 

909

 
 

85475

 
 

134

Paid content will be excluded from the download.


Download | Alert*
OVAL

Security-bypass vulnerability in Microsoft Internet Explorer

Deprecated
ID: oval:org.secpod.oval:def:2050Date: (C)2011-08-30   (M)2015-12-16
Class: VULNERABILITYFamily: windows




The host is installed with Microsoft Internet Explorer and is prone to security-bypass vulnerability. A flaw is present in the application which fails to properly restrict modifications to cookies established in HTTPS sessions. Successful exploitation allows attackers to bypass security features provided by secure cookies.

Platform:
Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product:
Microsoft Internet Explorer
Reference:
CVE-2008-7295
CVE    1
CVE-2008-7295
CPE    5
cpe:/a:microsoft:ie:8
cpe:/a:microsoft:ie:7
cpe:/a:microsoft:ie:6
cpe:/a:microsoft:ie:5
...

© SecPod Technologies