CVE-2007-4356

CVE-2007-4356 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Microsoft Internet Explorer 6 and 7 embeds FTP credentials in HTML files that are retrieved during an FTP session, which allows context-dependent attackers to obtain sensitive information by reading the HTML source, as demonstrated by a (1) .htm, (2) .html, or (3) .mht file.

Learn more about our Web Application Penetration Testing UK.