Microsoft Internet Explorer prior to 8 uses the HTTP Host header to determine the context of a document provided in a (1) 4xx or (2) 5xx CONNECT response from a proxy server, which allows man-in-the-middle malicious users to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
microsoft internet explorer 4.0.1 |
||
microsoft internet explorer 4.70.1155 |
||
microsoft internet explorer 4.70.1215 |
||
microsoft internet explorer 4.72.2106.8 |
||
microsoft internet explorer 4.72.3612.1713 |
||
microsoft internet explorer 5.0.1 |
||
microsoft ie 5.0 |
||
microsoft internet explorer 5.00.2919.6307 |
||
microsoft internet explorer 5.00.2920.0000 |
||
microsoft internet explorer 5.00.3502.1000 |
||
microsoft internet explorer 5.01 |
||
microsoft ie 5.22 |
||
microsoft internet explorer 5.5 |
||
microsoft internet explorer 5.50.4522.1800 |
||
microsoft internet explorer 6 |
||
microsoft internet explorer 6.0.2900 |
||
microsoft ie 6.0 |
||
microsoft internet explorer 6.00.3790.0000 |
||
microsoft internet explorer 6.00.3790.3959 |
||
microsoft internet explorer 7.0 |
||
microsoft internet explorer 7.00.6000.16386 |
||
microsoft internet explorer 3.0.1 |
||
microsoft internet explorer 3.0.2 |
||
microsoft internet explorer 3.1 |
||
microsoft internet explorer 3.2 |
||
microsoft internet explorer 4.70.1300 |
||
microsoft internet explorer 4.71.1008.3 |
||
microsoft internet explorer 4.71.1712.6 |
||
microsoft internet explorer 4.71.544 |
||
microsoft internet explorer 5.00.0910.1309 |
||
microsoft internet explorer 5.00.2014.0216 |
||
microsoft internet explorer 5.00.2314.1003 |
||
microsoft internet explorer 5.00.2614.3500 |
||
microsoft internet explorer 4.01 |
||
microsoft internet explorer 4.1 |
||
microsoft internet explorer 4.40.308 |
||
microsoft internet explorer 4.40.520 |
||
microsoft internet explorer 5.0 |
||
microsoft internet explorer 5.00.3103.1000 |
||
microsoft internet explorer 5.00.3105.0106 |
||
microsoft internet explorer 5.00.3314.2101 |
||
microsoft internet explorer 5.00.3315.1000 |
||
microsoft internet explorer 5.50.3825.1300 |
||
microsoft internet explorer 5.50.4030.2400 |
||
microsoft internet explorer 5.50.4134.0600 |
||
microsoft internet explorer 6.00.2462.0000 |
||
microsoft internet explorer 6.00.2479.0006 |
||
microsoft internet explorer 6.00.2800.1106 |
||
microsoft internet explorer 6.00.2900.2180 |
||
microsoft internet explorer 6.00.3663.0000 |
||
microsoft internet explorer 7.00.6000.16441 |
||
microsoft internet explorer 5.1 |
||
microsoft internet explorer 6.0 |
||
microsoft internet explorer 6.0.2600 |
||
microsoft internet explorer 6.0.2800 |
||
microsoft internet explorer 6.0.2800.1106 |
||
microsoft internet explorer 7 |
||
microsoft internet explorer 7.0.5730.11 |
||
microsoft internet explorer 3.0 |
||
microsoft internet explorer 4.0 |
||
microsoft internet explorer 4.5 |
||
microsoft internet explorer 4.70.1158 |
||
microsoft internet explorer 4.72.3110.8 |
||
microsoft internet explorer 5 |
||
microsoft internet explorer 5.00.0518.10 |
||
microsoft internet explorer 5.00.2919.3800 |
||
microsoft internet explorer 5.00.2919.800 |
||
microsoft internet explorer 5.00.3700.1000 |
||
microsoft internet explorer 5.2.3 |
||
microsoft internet explorer 5.50.4308.2900 |
||
microsoft internet explorer 5.50.4807.2300 |
||
microsoft internet explorer 6.0.2900.2180 |
||
microsoft internet explorer 6.00.3790.1830 |
||
microsoft internet explorer 7.00.5730.1100 |
Vulmon