Microsoft Internet Explorer 5.01, 5.5, and 6, when using an HTTPS proxy server that requires Basic Authentication, sends URLs in cleartext, which allows remote attackers to obtain sensitive information, aka "HTTPS Proxy Vulnerability."
2005-12-14T11:03:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 5.0 (MEDIUM)
AV:N/AC:L/Au:N/C:P/I:N/A:N
10.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | microsoft | ie | 6.0 | Yes |
| Application | microsoft | internet_explorer | 5.0.1 | Yes |
| Application | microsoft | internet_explorer | 5.5 | Yes |
| Application | microsoft | internet_explorer | 6.0 | Yes |