655 matches found
Potential Internet Explorer Security Risk
Potential Security Risk with Internet Explorer This was tested on version: 5.00.2614.3500 with Windows 98 SE 4.10.2222A. I was playing with Favorites and added a favorite with the name of 'www.dsakfjhasdfj.com' and set it to point to the address 'c:command.com'. dont include the '' characters...
Обход Trend Micro AppletTrap (protection bypass)
Можно обойти защиту от Javascript Используя Unicode - кодировку...
OReilly Software WebBoard 4.10.30 - Pager Hostile JavaScript
source: https://www.securityfocus.com/bid/2814/info O'Reilly WebBoard is a conferencing utility, forum, threaded discussion and real-time chat server. Versions of WebBoard are vulnerable to a JavaScript code execution bug which may allow a remote denial of service against a target WebBoard user's...
Sun HotJava Browser 3 - Arbitrary DOM Access
source: https://www.securityfocus.com/bid/1837/info A malicious website operator may be able to obtain cookies from a target system browsing with Sun HotJava Browser. The Document Object Model DOM of arbitrary URLs can be accessed if a specially formed javascript is launched from a named window...
Sun HotJava Browser 3 - Arbitrary DOM Access
Sun HotJava Browser 3 - Arbitrary DOM Access source: https://www.securityfocus.com/bid/1837/info A malicious website operator may be able to obtain cookies from a target system browsing with Sun HotJava Browser. The Document Object Model DOM of arbitrary URLs can be accessed if a specially formed...
Очередная дырка javascript в IE
Сочетание метода navigate с IFRAME позволяет обратиться к локальным файлам. IFRAME ID="I1"/IFRAME SCRIPT for=I1 event="NavigateComplete2b" alert"Here is your file:n"+b.document.body.innerText; /SCRIPT SCRIPT I1.navigate"file://c:/test.txt"; setTimeout'I1.navigate"file://c:/test.txt"',1000; /SCRIP...
CVE-1999-0031
JavaScript in Internet Explorer 3.x and 4.x, and Netscape 2.x, 3.x and 4.x, allows remote attackers to monitor a user's web activities, aka the Bell Labs vulnerability...
Microsoft Internet Explorer 4.0/4.0.1/5.0/5.0.1/5.5 - preview Security Zone Settings Lag
Microsoft Internet Explorer 4.0 for Windows 3.1/Windows 95,Internet Explorer 5.0 for Windows 2000/Windows 95/Windows 98/Windows NT 4,Internet Explorer 5.5 preview,Internet Explorer 4.0.1 for Windows 98/Windows NT 4.0,Internet Explorer 5.0.1 Security Zone Settings Lag Vulnerability source:...
CVE-1999-0762
When Javascript is embedded within the TITLE tag, Netscape Communicator allows a remote attacker to use the "about" protocol to gain access to browser information...
netscape.4.x.java.txt
Netscape 4.x javascript security flaw Versions tested: Windows98/Netscape4.7,Windows95/Netscape4.05 Description: Credits to Henri Torgemane Netscape has a "persistent" navigator object, which means that any data put in the window.navigator object will be accessible to every other window as long a...
Microsoft Internet Explorer 5.0/4.0.1 - JavaScript URL Redirection (MS99-043)
Microsoft Internet Explorer 5.0 for Windows 2000/Windows 95/Windows 98/Windows NT 4,Microsoft Internet Explorer 4.0.1 for Windows 98/Windows NT 4.0/Unix 5.0 Javascript URL Redirection Vulnerability source: https://www.securityfocus.com/bid/722/info A malicious web site operator could design a web...
Microsoft Internet Explorer 5 Netscape Communicator 4.04.54.6 - JavaScript STYLE
Microsoft Internet Explorer 5 Netscape Communicator 4.04.54.6 - JavaScript STYLE Microsoft Internet Explorer 5.0 for Windows 2000/Windows 95/Windows 98/Windows NT 4,Netscape Communicator 4.0/4.5/4.6 Javascript STYLE Vulnerability source: https://www.securityfocus.com/bid/630/info The HTML STYLE...
Microsoft Internet Explorer 5 / Netscape Communicator 4.0/4.5/4.6 - JavaScript STYLE
Microsoft Internet Explorer 5.0 for Windows 2000/Windows 95/Windows 98/Windows NT 4,Netscape Communicator 4.0/4.5/4.6 Javascript STYLE Vulnerability source: https://www.securityfocus.com/bid/630/info The HTML STYLE command can be used to embed Javascript into Hotmail email messages. The STYLE tag...
CVE-1999-0031
JavaScript in Internet Explorer 3.x and 4.x, and Netscape 2.x, 3.x and 4.x, allows remote attackers to monitor a user's web activities, aka the Bell Labs vulnerability...
PT-2009-6655 · Mozilla +1 · Firefox +2
Name of the Vulnerable Software and Affected Versions: Mozilla Firefox versions prior to 3.0.12 Thunderbird versions prior to 3.0.12 Description: The issue is related to the JavaScript engine and can cause a denial of service or possibly execute arbitrary code. It is related to vectors such as...