Go to Windows 7 Insider Guide
- Quick specs
- Price: Update
- Operating system: Windows 95/98/2000/NT
- Date added: May 20, 2001
- Total Downloads: 756
- Downloads last week: 1
- See full specifications
- Average user rating: Be the first to rate this product!
Publisher's description
From Microsoft :A patch is available to eliminate two newly discovered vulnerabilities affecting Internet Explorer, both of which could enable an attacker to spoof trusted web sites. The first vulnerability involves how digital certificates from web servers are validated. When CRL checking for such certificates is enabled, it could be possible for any or all of the following checks to no longer be performed:
The second vulnerability could enable a web page to display the URL from a different web site in the IE address bar. This spoofing could occur within a valid SSL session with the impersonated site. Both vulnerabilities could be used to convince a user that the attackerâ??s web site was actually a different one â?? one that the user presumably trusts and would provide sensitive information to. However, as discussed in the Mitigating Factors section below, there would be significant hurdles to exploiting either vulnerability.
More popular Internet Operations downloads
- 12,866 downloads 1. BearFlix
- 9,101 downloads 2. Multi Yahoo for v7.5, v8.0, v8.1 (All)
- 3,006 downloads 3. Badongo Buddy
- 2,553 downloads 4. FLV CAP
- 1,919 downloads 5. Ripper
- See all Internet Operations downloads
User reviews
Write your own review Be the first one to review Microsoft Internet Explorer Security Patch NA and share your experience with the CNET community!
Submit your review
- See more CNET content tagged:
- Microsoft Corp.,
- Microsoft Internet Explorer,
- certificate,
- server,
- vulnerability
