If a WebOC (Web Browser control) hosting application has the DOCHOSTUIFLAG_ENABLE_REDIRECT_NOTIFICATION flag, Internet Explorer 11, Internet Explorer 10, Internet Explorer 9, or Internet Explorer 8 loses an HTTP method of the application. For example, when a WebOC hosting application issues a POST request and receives a 307-Temporary Redirect message, Internet Explorer issues a GET request for the new location and loses the data in the original POST request.
To resolve this problem, install the most recent cumulative security update for Internet Explorer. To do this, go to Microsoft Update. Additionally, see the technical information about the most recent cumulative security update for Internet Explorer.
Note This update was first included in security update MS14-056: Cumulative security update for Internet Explorer: October 14, 2014.
Urlmon handles redirections instead of WinInet doing them automatically. Unfortunately, Urlmon and WinInet differ in how they handle the redirections. WinInet always keeps an HTTP method while Urlmon changes the HTTP method to a GET request.
If a WebOC host application wants to control redirections, it subscribes to the redirection notification that is sent through IBindCallbackRedirection. The application also sets the DOCHOSTUIFLAG_ENABLE_REDIRECT_NOTIFICATION flag to turn off the WinInet auto-redirect. Now, the redirection handling is moved from WinInet to Urlmon. In the current implementation, Urlmon creates a new CINET object and restarts the transaction. However, the BindVerb is set to BINDVERB_GET instead of BINDVERB_POST in CTransaction::GetBindInfoEx(). Therefore, Urlmon sends a GET request.
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
See the terminology that Microsoft uses to describe software updates.