CVE-2010-1226

The HTTP client functionality in Apple iPhone OS 3.1 on the iPhone 2G and 3.1.3 on the iPhone 3GS allows remote attackers to cause a denial of service Safari, Mail, or Springboard crash via a crafted innerHTML property of a DIV element, related to a "malformed character" issue...

CVE-2010-1226

The HTTP client functionality in Apple iPhone OS 3.1 on the iPhone 2G and 3.1.3 on the iPhone 3GS allows remote attackers to cause a denial of service Safari, Mail, or Springboard crash via a crafted innerHTML property of a DIV element, related to a "malformed character" issue...

ZDI-10-029: Apple WebKit innerHTML element Substitution Remote Code Execution Vulnerability

ZDI-10-029: Apple WebKit innerHTML element Substitution Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-029 March 15, 2010 -- CVE ID: CVE-2010-0050 -- Affected Vendors: Google Apple -- Affected Products: Google Chrome Apple WebKit Apple Safari --...

Apple WebKit innerHTML element Substitution Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple WebKit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the WebCore's...

Microsoft Windows ShellExecute()输入验证漏洞（MS10-002/MS10-007）

BUGTRAQ ID: 37884 CVE ID: CVE-2010-0027 Microsoft Windows是微软发布的非常流行的操作系统。 IE浏览器等应用使用ShellExecute API函数处理文件。由于没有正确的对数据流执行验证，用户受骗跟随了恶意URL就可能导致绕过安全过滤执行本地系统上的二进制程序。 Microsoft Windows XP SP3 Microsoft Windows XP SP2 Microsoft Windows Server 2003 SP2 Microsoft Windows 2000SP4 厂商补丁： Microsoft ---------...