Lucene search
+L

779 matches found

Positive Technologies
Positive Technologies
added 2009/02/10 12:0 a.m.5 views

PT-2009-2776 · Microsoft · Internet Explorer

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer version 7 Description: A remote code execution issue exists in the way Internet Explorer handles Cascading Style Sheets CSS. This could be exploited by an attacker constructing a specially crafted Web page,...

9.3CVSS6.8AI score0.33537EPSS
Exploits1References12
Prion
Prion
added 2009/02/03 7:30 p.m.12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Bioinformatics htmLawed 1.1.3 and 1.1.4 allow remote attackers to inject arbitrary web script or HTML via invalid Cascading Style Sheets CSS expressions in the style attribute, which is processed by Internet Explorer 7...

4.3CVSS6AI score0.01292EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2009/02/03 7:0 p.m.24 views

CVE-2009-0404

Multiple cross-site scripting XSS vulnerabilities in Bioinformatics htmLawed 1.1.3 and 1.1.4 allow remote attackers to inject arbitrary web script or HTML via invalid Cascading Style Sheets CSS expressions in the style attribute, which is processed by Internet Explorer 7...

5.8AI score0.01292EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2008/09/10 12:0 a.m.30 views

CVE-2008-3632

Use-after-free vulnerability in WebKit in Apple iPod touch 1.1 through 2.0.2, and iPhone 1.0 through 2.0.2, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a web page with crafted Cascading Style Sheets CSS import statements...

9.3CVSS6AI score0.05951EPSS
Exploits1References3
Prion
Prion
added 2008/05/13 10:20 p.m.23 views

Memory corruption

Use-after-free vulnerability in Microsoft Word in Office 2000 and XP SP3, 2003 SP2 and SP3, and 2007 Office System SP1 and earlier allows remote attackers to execute arbitrary code via an HTML document with a large number of Cascading Style Sheets CSS selectors, related to a "memory handling erro...

9.3CVSS7.8AI score0.30869EPSS
Exploits1References9Affected Software2
OSV
OSV
added 2007/12/12 1:46 a.m.2 views

DEBIAN-CVE-2007-6321

Cross-site scripting XSS vulnerability in RoundCube webmail 0.1rc2, 2007-12-09, and earlier versions, when using Internet Explorer, allows remote attackers to inject arbitrary web script or HTML via style sheets containing expression commands...

4.3CVSS6AI score0.05439EPSS
Exploits1References1
Prion
Prion
added 2007/12/12 1:46 a.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in RoundCube webmail 0.1rc2, 2007-12-09, and earlier versions, when using Internet Explorer, allows remote attackers to inject arbitrary web script or HTML via style sheets containing expression commands...

4.3CVSS5.9AI score0.05439EPSS
Exploits1References7Affected Software1
Debian CVE
Debian CVE
added 2007/12/12 1:0 a.m.66 views

CVE-2007-6321

Cross-site scripting XSS vulnerability in RoundCube webmail 0.1rc2, 2007-12-09, and earlier versions, when using Internet Explorer, allows remote attackers to inject arbitrary web script or HTML via style sheets containing expression commands...

4.3CVSS5.6AI score0.05439EPSS
Exploits1
Cvelist
Cvelist
added 2007/12/12 1:0 a.m.31 views

CVE-2007-6321

Cross-site scripting XSS vulnerability in RoundCube webmail 0.1rc2, 2007-12-09, and earlier versions, when using Internet Explorer, allows remote attackers to inject arbitrary web script or HTML via style sheets containing expression commands...

5.4AI score0.05439EPSS
Exploits1References7
Cvelist
Cvelist
added 2007/08/14 9:0 p.m.32 views

CVE-2007-0943

Unspecified vulnerability in Internet Explorer 5.01 and 6 SP1 allows remote attackers to execute arbitrary code via crafted Cascading Style Sheets CSS strings that trigger memory corruption during parsing, related to use of out-of-bounds pointers...

7.7AI score0.2711EPSS
Exploits1References9
Prion
Prion
added 2007/06/12 7:30 p.m.18 views

Memory corruption

Unspecified vulnerability in Microsoft Internet Explorer 6 allows remote attackers to execute arbitrary code via a crafted Cascading Style Sheets CSS tag that triggers memory corruption...

9.3CVSS7.6AI score0.30914EPSS
Exploits0References10Affected Software1
NVD
NVD
added 2006/11/04 1:7 a.m.11 views

CVE-2006-5712

Cross-site scripting XSS vulnerability in Mirapoint WebMail allows remote attackers to inject arbitrary web script via the expression Cascading Style Sheets CSS function, as demonstrated using the width style for an IMG element...

4.3CVSS5.9AI score0.01601EPSS
Exploits1References5
CVE
CVE
added 2006/11/04 1:0 a.m.44 views

CVE-2006-5712

Technical details (affected product/version, root cause, impact, or remediation) are not publicly provided in the connected documents for CVE-2006-5712. Monitor for updates.

4.3CVSS6.2AI score0.01601EPSS
Exploits1References5Affected Software1
securityvulns
securityvulns
added 2006/11/02 12:0 a.m.69 views

[Full-disclosure] Cross Site Scripting (XSS) Vulnerability in Web Mail platform by "Mirapoint"

·= Security Advisory =· Issue: Cross Site Scripting XSS Vulnerability in Web Mail platform by "Mirapoint" Discovered Date: 19/09/2006 Author: Tal Argoni, LegendaryZion. talargoni at gmail.com Product Vendor: http://www.mirapoint.com/ Details: Mirapoint Web Mail platform is prone to a Cross Site...

6.5AI score
Exploits0
securityvulns
securityvulns
added 2006/11/01 12:0 a.m.46 views

Cross Site Scripting (XSS) Vulnerability in Web Mail service by "Walla! Communications LTD"

·= Security Advisory =· Issue: Cross Site Scripting XSS Vulnerability in Web Mail service by "Walla! Communications LTD" Discovered Date: 05/10/2006 Author: Tal Argoni, LegendaryZion. talargoni at gmail.com Product Vendor: http://www.walla.co.il/ Details: Walla! Communications LTD Web Mail servic...

Exploits0
securityvulns
securityvulns
added 2006/11/01 12:0 a.m.50 views

Cross Site Scripting (XSS) Vulnerability in iPlanet Messaging Server Messenger Express by "Sun"

·= Security Advisory =· Issue: Cross Site Scripting XSS Vulnerability in iPlanet Messaging Server Messenger Express by "Sun" Discovered Date: 25/09/2006 Author: Tal Argoni, LegendaryZion. talargoni at gmail.com Product Vendor: http://www.sun.com/ Details: iPlanet Messaging Server Messenger Expres...

Exploits0
Check Point Advisories
Check Point Advisories
added 2006/10/11 12:0 a.m.47 views

Update Protection against Microsoft Internet Explorer Memory Corruption Vulnerabilities (MS06-042)

Microsoft Internet Explorer is prone to multiple memory corruption vulnerabilities. The application fails to properly handle un-initialized COM objects and chained Cascading Style Sheets CSS. This flaw allows attackers to cause denial of service and possibly to execute arbitrary code by convincin...

7.5CVSS7.3AI score0.41215EPSS
Exploits0
NVD
NVD
added 2006/08/08 11:4 p.m.27 views

CVE-2006-3451

Microsoft Internet Explorer 5 SP4 and 6 do not properly garbage collect when "multiple imports are used on a styleSheets collection" to construct a chain of Cascading Style Sheets CSS, which allows remote attackers to execute arbitrary code via unspecified vectors...

7.5CVSS7.6AI score0.41215EPSS
Exploits0References12
Symantec
Symantec
added 2006/08/08 12:0 a.m.16 views

Microsoft Internet Explorer Chained Cascading Style Sheets Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to remote code-execution vulnerability. This issue is related to how the browser handles chained CSS Cascading Style Sheets. An attacker could exploit this issue to execute arbitrary code in the context of the user visiting a malicious web page. Th...

7.7AI score
Exploits0References3Affected Software2
NVD
NVD
added 2006/07/06 1:5 a.m.16 views

CVE-2006-3353

Opera 9 allows remote attackers to cause a denial of service crash via a crafted web page that triggers an out-of-bounds memory access, related to an iframe and JavaScript that accesses certain style sheets properties...

5CVSS6.6AI score0.08209EPSS
Exploits1References7
Rows per page
Query Builder