62 matches found
KDE 4.4.1 - Ksysguard Remote Code Execution (via Cross Application Scripting)
Exploit Title: Ksysguard RCE via Cross Application Scripting Date: 2010 03 20 Author: Emanuele 'emgent' Gentili Code: http://www.backtrack.it/emgent/exploits/20100320KsysguardRCECAS.txt Version: halfapple: emanuelegentili$...
KDE multiple security vulnerabilities
Crossaplication scripting in Ark, protocol URI handlers, KMail...
Apple Quicktime /w IE .qtl Version XAS Remote Exploit PoC
No description provided by source. !-- Performing XAS Cross Application Scripting attacks automatically read "no user interaction" is very easy, as I showed before in my "shutting down skype" proof-of-concept...
Apple QuickTime w IE .qtl Version XAS - Remote
Apple QuickTime w IE .qtl Version XAS - Remote milw0rm.com 2007-09-18...
CVE-2007-4824
Technical details about CVE-2007-4824 are not publicly available in the provided documents. No concrete affected products, versions, or exploit information are provided; monitor for updates.
Sophos Antivirus cross aplication scripting
Cross application scripting on ZIP archive content logging...
Tor cross application scripting
Cross applicaiton scripting via Tor proxy erro message...
[Full-disclosure] Cross Application Scripting (IE pwns Trillian, Trillian pwns YOU!)
To all, Registered URIs can be extremely dangerous... browsers must take special care in filtering which characters are passed to registered URIs. Developers must take special care when registering a URI. We've discovered MANY MANY issues with registered URIs over the last year. Registered URIs c...
CVE-2006-5742
The AirMagnet Enterprise console and Remote Sensor console Laptop in AirMagnet Enterprise before 7.5 build 6307 allows remote attackers to inject arbitrary web script or HTML from a certain embedded Internet Explorer object into an SSID template value, aka "Cross-Application Scripting XAS"...
CVE-2006-5742
The AirMagnet Enterprise console and Remote Sensor console Laptop in AirMagnet Enterprise before 7.5 build 6307 allows remote attackers to inject arbitrary web script or HTML from a certain embedded Internet Explorer object into an SSID template value, aka "Cross-Application Scripting XAS"...
CVE-2006-5742
The CVE-2006-5742 entry concerns AirMagnet Enterprise before version 7.5 build 6307, specifically the AirMagnet Enterprise console and Remote Sensor console (Laptop). The vulnerability allows remote attackers to inject arbitrary web script or HTML from a embedded Internet Explorer object into an ...
Cross site scripting
Cross-Application Scripting XAS vulnerability in ICQ Client 5.04 build 2321 and earlier allows remote attackers to inject arbitrary web script from one application into another via a banner, which is processed in the My Computer zone using the Internet Explorer COM object...
CVE-2006-2303
Cross-Application Scripting XAS vulnerability in ICQ Client 5.04 build 2321 and earlier allows remote attackers to inject arbitrary web script from one application into another via a banner, which is processed in the My Computer zone using the Internet Explorer COM object...
CVE-2006-2303
CVE-2006-2303 describes a Cross-Application Scripting (XAS) vulnerability in ICQ Client 5.04 build 2321 and earlier. The flaw allows a remote attacker to inject arbitrary web script from one application into another via a banner, which is processed in the My Computer zone using the Internet Explo...
CVE-2006-2303
Cross-Application Scripting XAS vulnerability in ICQ Client 5.04 build 2321 and earlier allows remote attackers to inject arbitrary web script from one application into another via a banner, which is processed in the My Computer zone using the Internet Explorer COM object...
ICQ client cross application scripting
It's possible to inject script code into banner window to execute code in My Computer security zone...
ICQ Client Cross-Application Scripting (XAS)
ICQ Client Cross-Application Scripting XAS by [email protected] Severity: Low Potential Impact: Remote script execution ICQ client in some condition is vulnerable to remote script injection into used Internet Explorer in My Computer Security Zone. Detailed description quote...
Multiple vulnerability scanners cross application scripting
Unsafe data obtained during remote host scan is passed to Internet Explorer...
CVE-2005-2442
Cross-Application Scripting XAS vulnerability in SPI Dynamics WebInspect 5.0.196 allows remote attackers to inject Javascript from one application into another...
CVE-2005-2442
CVE-2005-2442 concerns a Cross-Application Scripting (XAS) vulnerability in SPI Dynamics WebInspect 5.0.196. The connected documents confirm the issue arises in WebInspect and enables remote attackers to inject Javascript from one application into another (XAS), with remote exploitation described...