CVE-2007-5355
NONEThe Web Proxy Auto-Discovery (WPAD) feature in Microsoft Internet Explorer 6 and 7, when a primary DNS suffix with three or more components is configured, resolves an unqualified wpad hostname in a se
게시됨: 12/5/2007업데이트됨: 4/9/2025
설명
The Web Proxy Auto-Discovery (WPAD) feature in Microsoft Internet Explorer 6 and 7, when a primary DNS suffix with three or more components is configured, resolves an unqualified wpad hostname in a second-level domain outside this configured DNS domain, which allows remote WPAD servers to conduct man-in-the-middle (MITM) attacks.
AI 분석AI 기반
영향받는 제품
microsoftwindows_2000
microsoftinternet_explorer
5.01
microsoftwindows_2000
microsoftinternet_explorer
6
microsoftwindows_2003_server
64-bit
microsoftwindows_2003_server
64-bit_sp2
microsoftwindows_2003_server
itanium_sp1
microsoftwindows_2003_server
itanium_sp2
microsoftwindows_2003_server
sp1
microsoftwindows_2003_server
sp2
microsoftwindows_xp
microsoftinternet_explorer
6
microsoftwindows_2003_server
64-bit
microsoftwindows_2003_server
64-bit_sp2
microsoftwindows_2003_server
itanium_sp1
microsoftwindows_2003_server
itanium_sp2
microsoftwindows_2003_server
sp1
microsoftwindows_2003_server
sp2
microsoftwindows_vista
microsoftwindows_xp
microsoftinternet_explorer
7
참조
- http://secunia.com/advisories/27901Vendor Advisory
- http://support.microsoft.com/kb/945713
- http://www.microsoft.com/technet/security/advisory/945713.mspx
- http://www.securityfocus.com/bid/26686
- http://www.securitytracker.com/id?1019033
- http://www.vupen.com/english/advisories/2007/4064
- http://secunia.com/advisories/27901Vendor Advisory
- http://support.microsoft.com/kb/945713
- http://www.microsoft.com/technet/security/advisory/945713.mspx
- http://www.securityfocus.com/bid/26686
- http://www.securitytracker.com/id?1019033
- http://www.vupen.com/english/advisories/2007/4064