121 matches found
CVE-2018-18358
Lack of special casing of localhost in WPAD files in Google Chrome prior to 71.0.3578.80 allowed an attacker on the local network segment to proxy resources on localhost via a crafted WPAD file...
CVE-2018-18358
Lack of special casing of localhost in WPAD files in Google Chrome prior to 71.0.3578.80 allowed an attacker on the local network segment to proxy resources on localhost via a crafted WPAD file...
Design/Logic Flaw
Lack of special casing of localhost in WPAD files in Google Chrome prior to 71.0.3578.80 allowed an attacker on the local network segment to proxy resources on localhost via a crafted WPAD file...
CVE-2018-18358
Lack of special casing of localhost in WPAD files in Google Chrome prior to 71.0.3578.80 allowed an attacker on the local network segment to proxy resources on localhost via a crafted WPAD file...
CVE-2018-18358
CVE-2018-18358 affects Chromium/Google Chrome prior to 71.0.3578.80, where WPAD handling fails to correctly treat localhost, enabling a local-network attacker to proxy localhost via a crafted WPAD file. Connected advisories (Arch, Debian) confirm this as an access restriction bypass in the Proxy ...
CVE-2018-18358
Lack of special casing of localhost in WPAD files in Google Chrome prior to 71.0.3578.80 allowed an attacker on the local network segment to proxy resources on localhost via a crafted WPAD file...
CVE-2018-18358
Lack of special casing of localhost in WPAD files in Google Chrome prior to 71.0.3578.80 allowed an attacker on the local network segment to proxy resources on localhost via a crafted WPAD file...
Google Chrome 70.0.3538.77 Cross Site Scripting / Man-In-The-Middle
Chrome: malicious WPAD server can proxy localhost leading to XSS in http://localhost:/ VERSION Chrome Version: 70.0.3538.77 stable Operating System: Windows 10 version 1803 When Chrome is installed on Windows and the user joins a malicious network that advertises a WPAD script e.g. via DHCP, Chro...
Google Chrome 70.0.3538.77 Cross Site Scripting / Man-In-The-Middle Vulnerability
Exploit for windows platform in category local exploits Chrome: malicious WPAD server can proxy localhost leading to XSS in http://localhost:/ VERSION Chrome Version: 70.0.3538.77 stable Operating System: Windows 10 version 1803 When Chrome is installed on Windows and the user joins a malicious...
CVE-2018-18358
Lack of special casing of localhost in WPAD files in Google Chrome prior to 71.0.3578.80 allowed an attacker on the local network segment to proxy resources on localhost via a crafted WPAD file...
Automatic DNS registration and proxy autodiscovery allow spoofing of network services
Overview Automatic DNS registration and autodiscovery functionality provides an opportunity for the misconfiguration of networks, resulting in a loss of confidentiality and integrity of the network if an attacker on the network adds a specially configured proxy device. Description The Web Proxy...
Microsoft Windows - JScript RegExp.lastIndex Use-After-Free
Microsoft Windows - JScript RegExp.lastIndex Use-After-Free alert'start'; var vars = ; var r = new RegExp; forvar i=0; i20000; i++ varsi =...
Microsoft Windows - JScript RegExp.lastIndex Use-After-Free Exploit
Exploit for windows platform in category dos / poc alert'start'; var vars = ; var r = new RegExp; forvar i=0; i20000; i++...
Microsoft Windows - JScript RegExp.lastIndex Use-After-Free
alert'start'; var vars = ; var r = new RegExp; forvar i=0; i20000; i++ varsi = "aaaaa"; r.lastIndex = "aaaaa"; for...
CVE-2017-5384
Proxy Auto-Config PAC files can specify a JavaScript function called for all URL requests with the full URL path which exposes more information than would be sent to the proxy itself in the case of HTTPS. Normally the Proxy Auto-Config file is specified by the user or machine owner and presumed t...
CVE-2017-5384
Proxy Auto-Config PAC files can specify a JavaScript function called for all URL requests with the full URL path which exposes more information than would be sent to the proxy itself in the case of HTTPS. Normally the Proxy Auto-Config file is specified by the user or machine owner and presumed t...
CVE-2017-5384
CVE-2017-5384 : Information disclosure via Proxy Auto-Config (PAC) in Firefox
CVE-2017-5384
Proxy Auto-Config PAC files can specify a JavaScript function called for all URL requests with the full URL path which exposes more information than would be sent to the proxy itself in the case of HTTPS. Normally the Proxy Auto-Config file is specified by the user or machine owner and presumed t...
Windows WPAD Service Elevation of Privilege Vulnerability
Microsoft Windows is a series of operating systems released by the American company Microsoft. An elevation of privilege vulnerability exists in the WPAD service enabled by Windows by default, which can be exploited by an attacker to remotely control a Windows system and gain maximum privileges o...
Windows: use-after-free in jscript!NameTbl::GetValDef(CVE-2017-11903)
There is a use-after-free vulnerability in jscript.dll. This issue could potentially be exploited through multiple vectors: - An attacker on the local network could exploit this issue by posing as a WPAD Web Proxy Auto-Discovery host and sending a malicious wpad.dat file to the victim. This works...