Oval Definition:
oval:org.mitre.oval:def:1097
Revision Date
:
2014-02-24
Version
:
48
Title
:
Win2K/XP,SP1 HTTPS Proxy Vulnerability
Description
:
Microsoft Internet Explorer 5.01, 5.5, and 6, when using an HTTPS proxy server that requires Basic Authentication, sends URLs in cleartext, which allows remote attackers to obtain sensitive information, aka "HTTPS Proxy Vulnerability."
Family
:
windows
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2005-2830
Platform(s)
:
Microsoft Windows 2000
Microsoft Windows XP
Product(s)
:
Microsoft Internet Explorer
Definition Synopsis
Win2K or XP,SP1 is installed
Windows 2000 is installed
OR
Windows XP 32-bit SP1 is installed
Windows XP 32-bit edition is installed
Windows XP is installed
AND
32-Bit version of Windows is installed
AND
Win2K/XP/2003/Vista service pack 1 is installed
AND
Internet Explorer 6 Service Pack 1 is installed
AND
the version of mshtml.dll is less than 6.0.2800.1528
BACK