[Full-disclosure] TSRT-06-08: Microsoft Internet Help COM Object Memory Corruption Vulnerability

TSRT-06-08: Microsoft Internet Help COM Object Memory Corruption Vulnerability http://www.tippingpoint.com/security/advisories/TSRT-06-08.html August 8, 2006 -- CVE ID: CVE-2006-3357 -- Affected Vendor: Microsoft -- Affected Products: Microsoft Windows Server 2003 SP1 and SP2 Microsoft Windows XP...

Update Protection against Microsoft JScript Remote Code Execution Vulnerability (MS06-023)

JScript is Microsoft's implementation of the ECMA 262 language specification ECMAScript Edition 3. Microsoft JScript contains a memory corruption vulnerability. By convincing a user to visit a Web site or read an e-mail message containing a specially crafted JScript file, a remote attacker may be...

Memory corruption

Microsoft JScript 5.1, 5.5, and 5.6 on Windows 2000 SP4, and 5.6 on Windows XP, Server 2003, Windows 98 and Windows Me, will "release objects early" in certain cases, which results in memory corruption and allows remote attackers to execute arbitrary code...

CVE-2006-1313

CVE-2006-1313 is the Microsoft JScript memory corruption remote code execution vulnerability documented in MS06-023. It affects JScript in Windows 98/Me, Windows 2000 SP4, Windows XP (incl. SP1/SP2), and Windows Server 2003 families, including x64/Itanium variants, where JScript may release objec...

MS06-023: Vulnerability in Microsoft JScript Could Allow Remote Code Execution (917344)

The remote host is running a version of Windows that contains a flaw in JScript. An attacker may be able to execute arbitrary code on the remote host by constructing a malicious JScript and enticing a victim to visit a website or view a specially crafted email message. Tenable Network Security,...

Microsoft Security Bulletin MS06-023 Vulnerability in Microsoft JScript Could Allow Remote Code Execution (917344)

Microsoft Security Bulletin MS06-023 Vulnerability in Microsoft JScript Could Allow Remote Code Execution 917344 Published: June 13, 2006 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Windows Impact of Vulnerability: Remote Code Execution Maximum Severity Rating:...

Microsoft JScript (Internet Explorer) memory corruption

Memory corruption on objects release. May be used for hidden malware installation...

Microsoft Security Bulletin MS06-021

Microsoft Security Bulletin MS06-021 Cumulative Security Update for Internet Explorer 916281 Published: June 13, 2006 Version: 1.0 Summary Who should read this document: Customers who use Microsoft Windows Impact of Vulnerability: Remote Code Execution Maximum Severity Rating: Critical...

Microsoft JScript memory corruption vulnerability

Overview Microsoft JScript contains a memory corruption vulnerability. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft JScript According to Microsoft Security Bulletin MS06-023: JScript is the Microsoft...

XSS on LarkinWEB & Company

XSS Vulnerability On LarkinWEB Database Development, Web Site Design Marketing and Advertising System.. Runing HTML Codes, JScript etch... XSS Vulerability URL : http://www.larkinweb.com/secure/error.asp?msg=XSS Example:...

IE Shell URI Download and Execute, POC

Hello; Code is based on http://www.securityfocus.com/archive/1/367878 POC by Jelmer message. I just added a new feature "download" and then execute application. Also I use Wscript.Shell in Javascript instead of Shell.Application. 1- copy IPADDRESSNULLSHAREDFOLDERbad.exe stealth 2- Wait for downlo...

An analysis of the 180 Solutions Trojan

An analysis of the 180 Solutions Trojan Introduction Just when I though it was save to once more to use internet explorer I received an email bringing my attention to this webpage http://216.130.188.219/ei2/installer.htm that according to him used an exploit that affected fully patched internet...

jscriptdll.txt

hi, i found a bug in jscript.dll... here is a small report on it... -------- Abstract -------- Microsoft Corp.'s Windows Script Engine within the Windows operating system OS interprets and executes script code written in scripting languages such as VBscript and JScript. Such script code can be us...

CVE-2003-0010

Integer overflow in JsArrayFunctionHeapSort function used by Windows Script Engine for JScript JScript.dll on various Windows operating system allows remote attackers to execute arbitrary code via a malicious web page or HTML e-mail that uses a large array index value that enables a heap-based...

iDEFENSE Security Advisory 03.19.03: Heap Overflow in Windows Script Engine

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 03.19.03: http://www.idefense.com/advisory/03.19.03.txt Heap Overflow in Windows Script Engine March 19, 2003 I. BACKGROUND Microsoft Corp.'s Windows Script Engine within the Windows operating system OS interprets and execut...

MSIE:"SaveRef" turns Zone off

TITLEMSIE:"SaveRef" turns Zone off/TITLE digest MSIE: you can execute jscript in any zone by saving the reference of "NewWindow.location.assign". content after the "exp" section is not directly related to the flaw, so skip it if you are in a hurry; testedMSIEv6CN version IEXPLORE.EXE file version...

CVE-1999-1093

The CVE-1999-1093 entry describes a buffer overflow in the Window.External function of the JScript Scripting Engine in Internet Explorer 4.01 SP1 and earlier . The flaw allows remote attackers to execute arbitrary commands via a malicious web page . Connected sources confirm the affected componen...

CVE-1999-1093

Buffer overflow in the Window.External function in the JScript Scripting Engine in Internet Explorer 4.01 SP1 and earlier allows remote attackers to execute arbitrary commands via a malicious web page...

Microsoft Internet Explorer 5/6 - GetObject File Disclosure

source: https://www.securityfocus.com/bid/3767/info A flaw exists in Microsoft Internet Explorer that may allow a remote attacker to view known files on a target system when a user views web content containing a specially crafted script. The problem occurs when the 'GetObject' JScript function is...

Microsoft Internet Explorer 4 Outlook 20005.5 - MSHTML.dll Crash

Microsoft Internet Explorer 4 Outlook 20005.5 - MSHTML.dll Crash source: https://www.securityfocus.com/bid/2202/info MSHTML.DLL is the shared library for parsing HTML in Internet Explorer and related applications. It may be possible for an attacker to crash this library remotely and cause a denia...