CVE-2005-2830

CVE Database · CVE-2005-2830

CVE-2005-2830

· N/AModified

CVSS v3.1

N/A

EPSS

35.49%

Published

Dec 14, 2005

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft Internet Explorer 5.01, 5.5, and 6, when using an HTTPS proxy server that requires Basic Authentication, sends URLs in cleartext, which allows remote attackers to obtain sensitive information, aka "HTTPS Proxy Vulnerability."

Affected Products (4)

microsoft · ievulnerable

microsoft · internet_explorervulnerable

References (20)

http://secunia.com/advisories/15368

http://secunia.com/advisories/18064

http://secunia.com/advisories/18311

http://securitytracker.com/id?1015350

http://support.avaya.com/elmodocs2/security/ASA-2005-234.pdf

http://www.securityfocus.com/bid/15825

Patch

http://www.vupen.com/english/advisories/2005/2867

http://www.vupen.com/english/advisories/2005/2909

http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=375420

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-054

https://exchange.xforce.ibmcloud.com/vulnerabilities/23451

KEV Catalog EPSS Scores Vendors All CVEs