VULHUB ™

Microsoft Security Advisory MS01-027 - Internet Explorer has 2 recently discovered vulnerabilities, both of which allow attackers to spoof trusted websites. The first vulnerability causes IE to not check that the server name matches the name on the cert, that the cert is not expired, and that the issuer of the cert is trusted. The second vulnerability allows web pages to display a fake URL in the IE address bar. Microsoft FAQ on this issue available here.

Microsoft Security Advisory MS01-027 - Internet Explorer has 2 recently discovered vulnerabilities, both of which allow attackers to spoof trusted websites. The first vulnerability causes IE to not check that the server name matches the name on the cert, that the cert is not expired, and that the issuer of the cert is trusted. The second vulnerability allows web pages to display a fake URL in the IE address bar. Microsoft FAQ on this issue available here.