Lucene search
K

270 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.31 views

Microsoft Internet Explorer 6 URI Handler Restriction Circumvention Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5730/info Microsoft Windows Internet Explorer 6.0 SP1 introduced restrictions for certain URI handlers such as file:// and res://. It has been demonstrated in the past that these URI handlers could be abused and...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

Opera Web Browser 7.x URI Handler Directory Traversal Vulnerability

source: http://www.securityfocus.com/bid/12898/info Maxthon Web Browser is reported prone to an information disclosure vulnerability. This issue may allow an attacker to disclose search bar contents from an affected browser. Information disclosed through the exploitation of this vulnerability may...

6.3AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

IBM Installation Manager <= 1.3.0 iim:// URI handler exploit

No description provided by source. !-- IBM Installation Manager = 1.3.0 iim:// uri handler remote code execution exploit - IE by nine:situations:group::bruiser site: http://retrogod.altervista.org/ vulnerable: IBM Rational Robot IBM Rational Team Concert possibly all Rational products, not Ration...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.27 views

Microsoft Internet Explorer and Mozilla Firefox URI Handler Command Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/24837/info Microsoft Internet Explorer, Mozilla Firefox and Netscape Navigator are prone to a vulnerability that lets attackers inject commands through the 'firefoxurl' and 'navigatorurl' protocol handlers. Exploiting the...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.24 views

IBM Lotus Expeditor 6.1 - URI Handler Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28926/info IBM Lotus Expeditor is prone to a command-execution vulnerability because it fails to properly sanitize input. Successfully exploiting this issue allows remote attackers to execute arbitrary commands in the...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.20 views

XChat <= 2.8.7b (URI Handler) Remote Code Execution Exploit (ie6/ie7)

No description provided by source. Xchat = 2.8.7b Remote Code Execution tested on Windows XP SP1+SP2+SP3, IE6 & IE7 fully patched Vendor : http://xchat.org/ Affected Os : Windows Risk : critical This bug is related to the URI Handler vulnerability but the approch is a bit different. We don't use...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2012/10/17 12:0 a.m.25 views

Valve Steam multiple security vulnerabilities

Buffer overflows, code executions and game engines vulnerabilities can be exploited via steam:// URI handler...

3.7AI score
Exploits0References1
securityvulns
securityvulns
added 2012/08/27 12:0 a.m.34 views

IBM Lotus Notes code execution

URI handler command injection...

9.3CVSS2.1AI score0.38291EPSS
Exploits11References1
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.18 views

Scientific Linux Security Update : lynx on SL3.x, SL4.x, SL5.x i386/x86_64

An arbitrary command execution flaw was found in the Lynx 'lynxcgi:' URI handler. An attacker could create a web page redirecting to a malicious URL that could execute arbitrary code as the user running Lynx in the non-default 'Advanced' user mode. CVE-2008-4690 Note: In these updated lynx...

10CVSS7.9AI score0.0506EPSS
Exploits1References3
seebug.org
seebug.org
added 2012/03/22 12:0 a.m.35 views

Google Talk gtalk:// Deprecated Uri Handler Parameter Injection Vulnerability

No description provided by source. Google Talk gtalk:// Deprecated Uri Handler /gaiaserver Parameter Injection Vulnerability tested against: Internet Explorer 8 Microsoft Windows all versions download url of 1.0.0.104: http://www.google.com/talk/install.html download urls of 1.0.0.105:...

7.1AI score
Exploits0
0day.today
0day.today
added 2012/03/22 12:0 a.m.35 views

Google Talk gtalk:// Deprecated Uri Handler Parameter Injection

Exploit for windows platform in category remote exploits Google Talk gtalk:// Deprecated Uri Handler /gaiaserver Parameter Injection Vulnerability tested against: Internet Explorer 8 Microsoft Windows all versions download url of 1.0.0.104: http://www.google.com/talk/install.html download urls of...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2012/03/22 12:0 a.m.33 views

Google Talk - gtalk: Deprecated URI Handler Injection

Google Talk - gtalk: Deprecated URI Handler Injection Google Talk gtalk:// Deprecated Uri Handler /gaiaserver Parameter Injection Vulnerability tested against: Internet Explorer 8 Microsoft Windows all versions download url of 1.0.0.104: http://www.google.com/talk/install.html download urls of...

7.7AI score
Exploits0
Exploit DB
Exploit DB
added 2012/03/22 12:0 a.m.46 views

Google Talk - &#039;gtalk://&#039; Deprecated URI Handler Injection

Google Talk gtalk:// Deprecated Uri Handler /gaiaserver Parameter Injection Vulnerability tested against: Internet Explorer 8 Microsoft Windows all versions download url of 1.0.0.104: http://www.google.com/talk/install.html download urls of 1.0.0.105: http://www.google.com/talk/intl/it/...

7AI score
Exploits0
Symantec
Symantec
added 2011/08/09 12:0 a.m.18 views

Microsoft Internet Explorer Telnet URI Handler Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a vulnerability that lets attackers execute arbitrary remote code. An attacker can exploit this issue by enticing a legitimate user to use a vulnerable version of the application to access an HTML file from a network share location that contains...

7.5AI score
Exploits0Affected Software6
securityvulns
securityvulns
added 2011/06/11 12:0 a.m.38 views

Novell iPrint multiple security vulnerabilities

Code execution via op-printer-list-all-jobs URI handler and cookie, Multiple ActiveX code execution vulnerabilities...

9.3CVSS2.9AI score0.05869EPSS
Exploits0References10Affected Software1
securityvulns
securityvulns
added 2011/02/15 12:0 a.m.92 views

ZDI-11-051: IBM Lotus Notes cai URI Handler Remote Code Execution Vulnerability

ZDI-11-051: IBM Lotus Notes cai URI Handler Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-051 February 7, 2011 - This vulnerability is being disclosed publicly without a patch in accordance with the ZDI 180 day deadline. To view mitigations for this...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2010/07/07 12:0 a.m.28 views

VLC Media Player 1.0.5 (Goldeneye) Buffer Overflow

There a Vulnerability in VLC Media Player v1.0.5 Goldeneye when handling M3U files with ftp:// URI handler. When we open the malicious file our EDX and EBP registers point to the user supplied data which might lead to code execution. State of the registers when we opne the malicious file is: EAX...

0.8AI score
Exploits0
securityvulns
securityvulns
added 2010/07/06 12:0 a.m.40 views

VLC Player M3U file ftp:// URI Handler Remote Stack Buffer Overflow

There a Vulnerability in VLC Media Player v1.0.5 Goldeneye when handling M3U files with ftp:// URI handler. When we open the malicious file our EDX and EBP registers point to the user supplied data which might lead to code execution. State of the registers when we opne the malicious file is: EAX...

7.1AI score
Exploits0
Prion
Prion
added 2010/04/15 9:30 p.m.23 views

Design/Logic Flaw

Argument injection vulnerability in the URI handler in a Java NPAPI plugin and b Java Deployment Toolkit in Java 6 Update 10, 19, and other versions, when running on Windows and possibly on Linux, allows remote attackers to execute arbitrary code via the 1 -J or 2 -XXaltjvm argument to javaws.exe...

9.3CVSS8.5AI score0.5558EPSS
Exploits2References9Affected Software2
UbuntuCve
UbuntuCve
added 2010/04/15 9:30 p.m.35 views

CVE-2010-1423

Argument injection vulnerability in the URI handler in a Java NPAPI plugin and b Java Deployment Toolkit in Java 6 Update 10, 19, and other versions, when running on Windows and possibly on Linux, allows remote attackers to execute arbitrary code via the 1 -J or 2 -XXaltjvm argument to javaws.exe...

9.3CVSS6.2AI score0.5558EPSS
Exploits2References1
Rows per page
Query Builder