Lucene search
K

62 matches found

Exploit DB
Exploit DB
added 2010/03/20 12:0 a.m.24 views

KDE 4.4.1 - Ksysguard Remote Code Execution (via Cross Application Scripting)

Exploit Title: Ksysguard RCE via Cross Application Scripting Date: 2010 03 20 Author: Emanuele 'emgent' Gentili Code: http://www.backtrack.it/emgent/exploits/20100320KsysguardRCECAS.txt Version: halfapple: emanuelegentili$...

7AI score
Exploits0
securityvulns
securityvulns
added 2009/10/28 12:0 a.m.21 views

KDE multiple security vulnerabilities

Crossaplication scripting in Ark, protocol URI handlers, KMail...

1.6AI score
Exploits0References1Affected Software1
seebug.org
seebug.org
added 2007/09/19 12:0 a.m.23 views

Apple Quicktime /w IE .qtl Version XAS Remote Exploit PoC

No description provided by source. !-- Performing XAS Cross Application Scripting attacks automatically read "no user interaction" is very easy, as I showed before in my "shutting down skype" proof-of-concept...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/09/18 12:0 a.m.16 views

Apple QuickTime w IE .qtl Version XAS - Remote

Apple QuickTime w IE .qtl Version XAS - Remote milw0rm.com 2007-09-18...

0.2AI score
Exploits0
CVE
CVE
added 2007/09/11 7:0 p.m.56 views

CVE-2007-4824

Technical details about CVE-2007-4824 are not publicly available in the provided documents. No concrete affected products, versions, or exploit information are provided; monitor for updates.

6.8CVSS6.4AI score0.00436EPSS
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2007/09/06 12:0 a.m.33 views

Sophos Antivirus cross aplication scripting

Cross application scripting on ZIP archive content logging...

4.3CVSS1.7AI score0.04759EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2007/09/04 12:0 a.m.66 views

Tor cross application scripting

Cross applicaiton scripting via Tor proxy erro message...

2.5AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2007/07/19 12:0 a.m.29 views

[Full-disclosure] Cross Application Scripting (IE pwns Trillian, Trillian pwns YOU!)

To all, Registered URIs can be extremely dangerous... browsers must take special care in filtering which characters are passed to registered URIs. Developers must take special care when registering a URI. We've discovered MANY MANY issues with registered URIs over the last year. Registered URIs c...

0.6AI score
Exploits0
NVD
NVD
added 2006/11/06 6:7 p.m.23 views

CVE-2006-5742

The AirMagnet Enterprise console and Remote Sensor console Laptop in AirMagnet Enterprise before 7.5 build 6307 allows remote attackers to inject arbitrary web script or HTML from a certain embedded Internet Explorer object into an SSID template value, aka "Cross-Application Scripting XAS"...

5CVSS6.3AI score0.01285EPSS
Exploits0References5
Cvelist
Cvelist
added 2006/11/06 6:0 p.m.15 views

CVE-2006-5742

The AirMagnet Enterprise console and Remote Sensor console Laptop in AirMagnet Enterprise before 7.5 build 6307 allows remote attackers to inject arbitrary web script or HTML from a certain embedded Internet Explorer object into an SSID template value, aka "Cross-Application Scripting XAS"...

6.3AI score0.01285EPSS
Exploits0References5
CVE
CVE
added 2006/11/06 6:0 p.m.49 views

CVE-2006-5742

The CVE-2006-5742 entry concerns AirMagnet Enterprise before version 7.5 build 6307, specifically the AirMagnet Enterprise console and Remote Sensor console (Laptop). The vulnerability allows remote attackers to inject arbitrary web script or HTML from a embedded Internet Explorer object into an ...

5CVSS6.6AI score0.01285EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2006/05/11 10:2 a.m.16 views

Cross site scripting

Cross-Application Scripting XAS vulnerability in ICQ Client 5.04 build 2321 and earlier allows remote attackers to inject arbitrary web script from one application into another via a banner, which is processed in the My Computer zone using the Internet Explorer COM object...

6.4CVSS6.6AI score0.01576EPSS
Exploits0References8Affected Software1
NVD
NVD
added 2006/05/11 10:2 a.m.11 views

CVE-2006-2303

Cross-Application Scripting XAS vulnerability in ICQ Client 5.04 build 2321 and earlier allows remote attackers to inject arbitrary web script from one application into another via a banner, which is processed in the My Computer zone using the Internet Explorer COM object...

6.4CVSS6.2AI score0.01576EPSS
Exploits0References8
CVE
CVE
added 2006/05/11 10:0 a.m.43 views

CVE-2006-2303

CVE-2006-2303 describes a Cross-Application Scripting (XAS) vulnerability in ICQ Client 5.04 build 2321 and earlier. The flaw allows a remote attacker to inject arbitrary web script from one application into another via a banner, which is processed in the My Computer zone using the Internet Explo...

6.4CVSS6.2AI score0.01576EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2006/05/11 10:0 a.m.21 views

CVE-2006-2303

Cross-Application Scripting XAS vulnerability in ICQ Client 5.04 build 2321 and earlier allows remote attackers to inject arbitrary web script from one application into another via a banner, which is processed in the My Computer zone using the Internet Explorer COM object...

6.2AI score0.01576EPSS
Exploits0References8
securityvulns
securityvulns
added 2006/05/09 12:0 a.m.50 views

ICQ client cross application scripting

It's possible to inject script code into banner window to execute code in My Computer security zone...

2.2AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2006/05/09 12:0 a.m.37 views

ICQ Client Cross-Application Scripting (XAS)

ICQ Client Cross-Application Scripting XAS by [email protected] Severity: Low Potential Impact: Remote script execution ICQ client in some condition is vulnerable to remote script injection into used Internet Explorer in My Computer Security Zone. Detailed description quote...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2005/12/22 12:0 a.m.40 views

Multiple vulnerability scanners cross application scripting

Unsafe data obtained during remote host scan is passed to Internet Explorer...

2.1AI score
Exploits0References4Affected Software4
Cvelist
Cvelist
added 2005/08/03 4:0 a.m.24 views

CVE-2005-2442

Cross-Application Scripting XAS vulnerability in SPI Dynamics WebInspect 5.0.196 allows remote attackers to inject Javascript from one application into another...

6.3AI score0.0164EPSS
Exploits1References7
CVE
CVE
added 2005/08/03 4:0 a.m.40 views

CVE-2005-2442

CVE-2005-2442 concerns a Cross-Application Scripting (XAS) vulnerability in SPI Dynamics WebInspect 5.0.196. The connected documents confirm the issue arises in WebInspect and enables remote attackers to inject Javascript from one application into another (XAS), with remote exploitation described...

5CVSS6.3AI score0.0164EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder