CVE-2007-5277

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer version 6

Description: The issue allows remote attackers to conduct DNS rebinding attacks. This is demonstrated by a URL on port 81 in an IMG SRC, when the DNS pin had been established for a session on port 80.

Recommendations: For Microsoft Internet Explorer version 6, consider restricting access to irrelevant TCP ports to minimize the risk of DNS rebinding attacks. As a temporary workaround, avoid using URLs that could trigger DNS rebinding, such as those using different ports in the same session.