96 matches found
ZDI-06-047: Microsoft Visual Studio WmiScriptUtils.dll Cross-Zone Scripting Vulnerability
ZDI-06-047: Microsoft Visual Studio WmiScriptUtils.dll Cross-Zone Scripting Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-047.html December 12, 2006 -- CVE ID: CVE-2006-4704 -- Affected Vendor: Microsoft -- Affected Products: Visual Studio 2005 Standard Edition Visual Studio 20...
Microsoft Visual Studio WmiScriptUtils.dll Cross-Zone Scripting Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. Successful exploitation requires that the target user browse to a malicious web page. The specific flaw exists in the Microsoft WMIScriptUtils.WMIObjectBroker2 ActiveX...
CVE-2006-4704
Cross-zone scripting vulnerability in the WMI Object Broker WMIScriptUtils.WMIObjectBroker2 ActiveX control WmiScriptUtils.dll in Microsoft Visual Studio 2005 allows remote attackers to bypass Internet zone restrictions and execute arbitrary code by instantiating dangerous objects, aka "WMI Objec...
CVE-2006-4704
Cross-zone scripting vulnerability in the WMI Object Broker WMIScriptUtils.WMIObjectBroker2 ActiveX control WmiScriptUtils.dll in Microsoft Visual Studio 2005 allows remote attackers to bypass Internet zone restrictions and execute arbitrary code by instantiating dangerous objects, aka "WMI Objec...
CVE-2006-4704
CVE-2006-4704 is a cross-zone scripting vulnerability in the WMIScriptUtils.WMIObjectBroker2 ActiveX control (WmiScriptUtils.dll) shipped with Visual Studio 2005. The flaw allows a remote attacker to bypass Internet Explorer zone restrictions and execute arbitrary code by instantiating dangerous ...
Microsoft Management Console Zone Bypass Vulnerability
Description Microsoft Management Console MMC is prone to a cross-zone scripting vulnerability because the operating system fails to properly restrict access to MMC components, allowing the MMC files to be referenced from the Internet Zone in some cases. Exploiting this vulnerability could let an...
Microsoft Windows HTML Help Control Cross-Zone Scripting Vulnerability
Description The Microsoft Windows HTML Help ActiveX control hhctrl.ocx is prone to a vulnerability that may permit cross-zone scripting. The HTML Help control is a component that allows help functionality to be inserted in an HTML file. It is possible to exploit this vulnerability through Interne...
Microsoft Internet Explorer 5 - Shell: IFrame Cross-Zone Scripting (2)
Microsoft Internet Explorer 5 - Shell: IFrame Cross-Zone Scripting 2 source: https://www.securityfocus.com/bid/9628/info It has been alleged that Microsoft Internet Explorer is prone to a weakness that may potentially allow for the execution of hostile script code in the context of the My Compute...
Microsoft Internet Explorer 5 - Shell: IFrame Cross-Zone Scripting (1)
Microsoft Internet Explorer 5 - Shell: IFrame Cross-Zone Scripting 1 source: https://www.securityfocus.com/bid/9628/info It has been alleged that Microsoft Internet Explorer is prone to a weakness that may potentially allow for the execution of hostile script code in the context of the My Compute...
Microsoft Internet Explorer 5 - Shell: IFrame Cross-Zone Scripting (2)
source: https://www.securityfocus.com/bid/9628/info It has been alleged that Microsoft Internet Explorer is prone to a weakness that may potentially allow for the execution of hostile script code in the context of the My Computer Zone. This issue is related to how shell: URIs are handled by the...
Microsoft Internet Explorer 5 - Shell: IFrame Cross-Zone Scripting (1)
source: https://www.securityfocus.com/bid/9628/info It has been alleged that Microsoft Internet Explorer is prone to a weakness that may potentially allow for the execution of hostile script code in the context of the My Computer Zone. This issue is related to how shell: URIs are handled by the...
Microsoft Internet Explorer 6 - window.open Media Bar Cross-Zone Scripting
Microsoft Internet Explorer 6 - window.open Media Bar Cross-Zone Scripting source: https://www.securityfocus.com/bid/9769/info It has been reported that Microsoft Internet Explorer may be prone to a cross-zone scripting vulnerability that could ultimately lead to execution of malicious script cod...
Microsoft Internet Explorer 6 - window.open Media Bar Cross-Zone Scripting
source: https://www.securityfocus.com/bid/9769/info It has been reported that Microsoft Internet Explorer may be prone to a cross-zone scripting vulnerability that could ultimately lead to execution of malicious script code and Active Content in the context of the My Computer Zone or a foreign...
Microsoft Internet Explorer 5 - window.open Search Pane Cross-Zone Scripting
Microsoft Internet Explorer 5 - window.open Search Pane Cross-Zone Scripting source: https://www.securityfocus.com/bid/9798/info A vulnerability has been reported in Microsoft Internet Explorer that could enable unauthorized access by malicious scripts and Active Content to document properties...
Microsoft Internet Explorer 5 - window.open Search Pane Cross-Zone Scripting
source: https://www.securityfocus.com/bid/9798/info A vulnerability has been reported in Microsoft Internet Explorer that could enable unauthorized access by malicious scripts and Active Content to document properties across different Security Zones and foreign domains. This issue is exposed when...
Microsoft Internet Explorer 5 - Document Reference Zone Bypass
Microsoft Internet Explorer 5 - Document Reference Zone Bypass source: https://www.securityfocus.com/bid/5841/info A vulnerability has been reported in Microsoft Internet Explorer that may allow for remote attackers to execute script code in the context of other domains/security Zones. The cause...