CVE-2008-2159

Published: May 12, 2008Modified: Apr 23, 2026

2.1

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

Microsoft Internet Explorer 7 can save encrypted pages in the cache even when the DisableCachingOfSSLPages registry setting is enabled, which might allow local users to obtain sensitive information.

Affected (1)

Products: Microsoft: Internet Explorer

Microsoft

1 product

Internet Explorer

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Microsoft Internet Explorer	Version 7

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (10)

http://secunia.com/advisories/30145

Source: cve@mitre.org

Vendor Advisory

http://www.kb.cert.org/vuls/id/468843

Source: cve@mitre.org

US Government Resource

http://www.securityfocus.com/bid/29120

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2008/1470/references

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/42307

Source: cve@mitre.org

http://secunia.com/advisories/30145