Bugsalert.com
Security News about Viruses, Spyware,
Trojans, Malware, XSS attacks.
Home | Recent | Sitemap

CVE-2007-5355
BugsAlert Home > CVE-2007-5355
 
 

The Web Proxy Auto-Discovery (WPAD) feature in Microsoft Internet Explorer 6 and 7, when a primary DNS suffix with three or more components is configured, resolves an unqualified wpad hostname in a second-level domain outside this configured DNS domain, which allows remote WPAD servers to conduct man-in-the-middle (MITM) attacks.




Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-5355

Learn more about CVE-2007-5355
 
Tags: cve-2007-5355

Related Items
      FrSIRT - FUJITSU Products "RemoteFilterValve" Security Bypass Vulnerability

      CVE-2008-1834 (swfdec)

      Microsoft Security Advisory (954474): System Center Configuration Manager 2007 Blocked from Deploying Security Updates - 6/13/2008

      FrSIRT - Turbolinux Security Update Fixes Thunderbird Multiple Vulnerabilities

      Sun Solaris IP Tunnel SIOCGTUNPARAM IOCTL Vulnerability

      JS_BADPOPUP.A

      Vuln: IPsec-Tools Multiple Remote Denial Of Service Vulnerabilities

 
© 2007-2009 BugsAlert.com Original template by Arcsin Hosted By 1and1


Pixel