Previous articleBack to news listNext article
|
Sponsored links |
Want to become one of our authors and see your work published on ALLSeek.iNFO ?
|
| Microsoft IE for Mac May Disclose Sensitive Information in Secure URLs to Remote Sites via HTTP Referer Field |
|---|
Categorie: Vulnerability
Posted: 2003-12-29 by ReCall
Views: 424
Source: Click here
| Current Rating: Not rated
|
|
| Details |
|---|
Description: A vulnerability was reported in Microsoft Internet Explorer version 5.22 for the Mac. The browser discloses HTTP Referer values from secure pages.
A report on Gadgetopia stated that the browser discloses secure page URLs when visiting a non-secure referenced site. This reportedly conflicts with the HTTP 1.1 specification.
According to the report, Microsoft Outlook Web Access (OWA) users may particularly be affected, as the referring link may contain sensitive information such as the target user's name.
The original report is available at:
http://www.gadgetopia.com/2003/12/23/OutlookWebAccessPrivacyHole.html
Impact: A remote user (web site) may be able to obtain sensitive secure web site URLs from the target user's browser.
Solution: No solution was available at the time of this entry.
|
| Syndication |
|---|
Permalink Email this
The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=622
|
| User comments (post your comments ) |
|---|
Only registerd members can post comments and articles
|
|
Previous articleBack to news listNext article
|
