New "Clean" IE Remote Compromise

tested OS:Win2k3,CN version IE: with MS03-048 installed. OS:WinXp, CN version Microsoft Internet Explorer v6.Sp1; up-to-date on 2003/11/16 overview By combining several vulnerabilities in Internet Explorer, an attacker can execute his EXE file on victim's system. "Clean" means: there is no old...

Cache Disclosure Leads to MYCOMPUTER Zone and Remote Compromise

Cache Disclosure Leads to MYCOMPUTER Zone and Remote Compromise tested OS:WinXp, CN version Microsoft Internet Explorer v6.Sp1; up-to-date on 2003/11/16 overview By combining cache file disclosure and several other unpatched vulnerabilties, an malicious INTERNET page can reach MYCOMPUTER zone. Th...

More reading of local files in MSIE

More reading of local files in MSIE Description There is a security vulnerability in IE 5.5 and 6 probably other versions as well which allows reading and sending of local files. The problem lies in the fact that you are able to access a local file's dom by calling the execScript function on a...

ie5-chm.txt

Georgi Guninski security advisory 8, 2000 IE 5.x allows executing arbitrary programs using .chm files Disclaimer: The opinions expressed in this advisory and program are my own and not of any company. The usual standard disclaimer applies, especially the fact that Georgi Guninski is not liable fo...

javascript.hotmail.txt

Georgi Guninski security advisory 3, 2000 Yet another Hotmail security hole - injecting JavaScript in IE using "@import urljavascript:..." Disclaimer: The opinions expressed in this advisory and program are my own and not of any company. The usual standard disclaimer applies, especially the fact...