Computer Security
[EN] securityvulns.ru no-pyccku


Microsoft Internet Explorer 7 request modification
Published:22.03.2008
Source:
SecurityVulns ID:8817
Type:client
Threat Level:
6/10
Description:Headers manipulation and invalid chunked encoding processing allow response splitting.
Affected:MICROSOFT : Windows XP
 MICROSOFT : Windows 2003 Server
 MICROSOFT : Windows Vista
 MICROSOFT : Windows 2008 Server
Original documentdocumentMinded Security Research Labs, [MSA01240108] IE7 Transfer-Encoding: chunked allows Request Splitting/Smuggling. (22.03.2008)
 documentMinded Security Research Labs, [MSA02240108] IE7 allows overwriting of several headers leading to Http request Splitting and smuggling. (22.03.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod