Описание
Internet Explorer Security Feature Bypass Vulnerability
A restricted ports security feature bypass vulnerability exists for Internet Explorer. An attacker could take advantage of the vulnerability to trick a user into connecting to a remote system.
To exploit the vulnerability, an attacker would have to either convince a user to visit a malicious website or inject malicious code into a compromised website.
The update addresses the vulnerability by correcting how Internet Explorer validates URLs for restricted ports.
Обновления
| Продукт | Статья | Обновление |
|---|---|---|
| Internet Explorer 9 on Windows Server 2008 for 32-bit Systems Service Pack 2 | ||
| Internet Explorer 9 on Windows Server 2008 for x64-based Systems Service Pack 2 | ||
| Internet Explorer 9 on Windows Vista Service Pack 2 | ||
| Internet Explorer 9 on Windows Vista x64 Edition Service Pack 2 | ||
| Internet Explorer 11 on Windows 7 for 32-bit Systems Service Pack 1 | ||
| Internet Explorer 11 on Windows 7 for x64-based Systems Service Pack 1 | ||
| Internet Explorer 11 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 | ||
| Internet Explorer 10 on Windows Server 2012 | ||
| Internet Explorer 11 on Windows 8.1 for 32-bit systems | ||
| Internet Explorer 11 on Windows 8.1 for x64-based systems |
Показывать по
Возможность эксплуатации
Publicly Disclosed
Exploited
Latest Software Release
Older Software Release
EPSS
3.5 Low
CVSS3
Связанные уязвимости
Microsoft Internet Explorer 9 through 11 allows remote attackers to trick users into making TCP connections to a restricted port via a crafted web site, aka "Internet Explorer Security Feature Bypass Vulnerability."
Microsoft Internet Explorer 9 through 11 allows remote attackers to trick users into making TCP connections to a restricted port via a crafted web site, aka "Internet Explorer Security Feature Bypass Vulnerability."
Уязвимость браузера Internet Explorer, позволяющая нарушителю обманным путем заставить пользователей создать TCP-соединение с ограниченным портом
EPSS
3.5 Low
CVSS3