PT-2001-1907 · Microsoft · Internet Explorer
Publicado
2001-11-14
·
Atualizado
2021-07-23
·
CVE-2001-0724
CVSS v2.0
7.5
Alta
| Vetor | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions:
Internet Explorer version 5.5
Description:
The issue allows remote attackers to bypass security restrictions by using malformed URLs that contain dotless IP addresses. This causes the browser to process the page in the Intranet Zone, which may have fewer security restrictions.
Recommendations:
For Internet Explorer version 5.5, update to a newer version to mitigate the risk. As a temporary workaround, consider avoiding the use of dotless IP addresses in URLs to minimize the risk of exploitation.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Internet Explorer