Lucene search
K

153 matches found

Packet Storm
Packet Storm
added 2008/05/15 12:0 a.m.21 views

msie-crosszone.txt

!-- Internet Explorer "Print Table of Links" Cross-Zone Scripting Vulnerability Author: Aviv Raff http://aviv.raffon.net/ Summary Internet Explorer is prone to a Cross-Zone Scripting vulnerability in its “Print Table of Links” feature. This feature allows users to add to a printed web page an...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/05/14 12:0 a.m.23 views

Microsoft Internet Explorer - Print Table of Links Cross-Zone Scripting

Microsoft Internet Explorer - Print Table of Links Cross-Zone Scripting !-- Internet Explorer "Print Table of Links" Cross-Zone Scripting Vulnerability Author: Aviv Raff http://aviv.raffon.net/ Summary Internet Explorer is prone to a Cross-Zone Scripting vulnerability in its “Print Table of...

7AI score
Exploits0
0day.today
0day.today
added 2008/05/14 12:0 a.m.18 views

MS Internet Explorer (Print Table of Links) Cross-Zone Scripting PoC

Exploit for unknown platform in category remote exploits ==================================================================== MS Internet Explorer Print Table of Links Cross-Zone Scripting PoC ==================================================================== !-- Internet Explorer "Print Table ...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/05/14 12:0 a.m.66 views

Microsoft Internet Explorer - Print Table of Links Cross-Zone Scripting

!-- Internet Explorer "Print Table of Links" Cross-Zone Scripting Vulnerability Author: Aviv Raff http://aviv.raffon.net/ Summary Internet Explorer is prone to a Cross-Zone Scripting vulnerability in its “Print Table of Links” feature. This feature allows users to add to a printed web page an...

7.4AI score
Exploits0
Prion
Prion
added 2008/02/05 3:0 a.m.16 views

Cross site scripting

Cross-zone scripting vulnerability in the Internet Explorer web control in Skype 3.6.0.244, and earlier 3.5.x and 3.6.x versions, on Windows allows user-assisted remote attackers to inject arbitrary web script or HTML in the Local Machine Zone via the Description and unspecified other metadata...

4.3CVSS6.5AI score0.25198EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2008/02/05 3:0 a.m.24 views

CVE-2008-0583

Cross-zone scripting vulnerability in the Internet Explorer web control in Skype 3.6.0.244, and earlier 3.5.x and 3.6.x versions, on Windows allows user-assisted remote attackers to inject arbitrary web script or HTML in the Local Machine Zone via the Description and unspecified other metadata...

4.3CVSS6.1AI score0.02063EPSS
Exploits1References5
NVD
NVD
added 2008/02/05 3:0 a.m.18 views

CVE-2008-0582

Cross-zone scripting vulnerability in the Internet Explorer web control in Skype 3.1 through 3.6.0.244 on Windows allows remote attackers to inject arbitrary web script or HTML in the Local Machine Zone via the Full Name field of a reviewer of a business item entry, accessible through 1 the...

4.3CVSS6.2AI score0.01207EPSS
Exploits0References4
CVE
CVE
added 2008/02/05 2:0 a.m.74 views

CVE-2008-0582

CVE-2008-0582 affects Skype on Windows (versions 3.1–3.6.0.244). The issue is a cross-zone scripting vulnerability in the Internet Explorer web control used by SkypeFind, allowing an attacker to inject script/HTML into the Local Machine Zone via the Full Name field of a reviewer in a business ite...

4.3CVSS6.2AI score0.01207EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2008/02/05 2:0 a.m.27 views

CVE-2008-0583

Cross-zone scripting vulnerability in the Internet Explorer web control in Skype 3.6.0.244, and earlier 3.5.x and 3.6.x versions, on Windows allows user-assisted remote attackers to inject arbitrary web script or HTML in the Local Machine Zone via the Description and unspecified other metadata...

6.1AI score0.02063EPSS
Exploits1References5
CVE
CVE
added 2008/02/05 2:0 a.m.46 views

CVE-2008-0583

CVE-2008-0583 describes a cross-zone scripting vulnerability in the Internet Explorer web control used by Skype 3.6.0.244 and older 3.5.x/3.6.x builds. The issue allows user-assisted remote attackers to inject arbitrary web script or HTML into the Local Machine Zone via metadata fields (Descripti...

4.3CVSS6.1AI score0.02063EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2008/02/05 2:0 a.m.19 views

CVE-2008-0582

Cross-zone scripting vulnerability in the Internet Explorer web control in Skype 3.1 through 3.6.0.244 on Windows allows remote attackers to inject arbitrary web script or HTML in the Local Machine Zone via the Full Name field of a reviewer of a business item entry, accessible through 1 the...

6.2AI score0.01207EPSS
Exploits0References4
Prion
Prion
added 2008/01/25 1:0 a.m.16 views

Cross site scripting

Cross-zone scripting vulnerability in the Internet Explorer web control in Skype 3.6.0.244, and earlier 3.5.x and 3.6.x versions, on Windows allows user-assisted remote attackers to inject arbitrary web script or HTML in the Local Machine Zone via the Title field of a 1 Dailymotion and possibly 2...

9.3CVSS6.4AI score0.25198EPSS
Exploits0References13Affected Software1
NVD
NVD
added 2008/01/25 1:0 a.m.22 views

CVE-2008-0454

Cross-zone scripting vulnerability in the Internet Explorer web control in Skype 3.6.0.244, and earlier 3.5.x and 3.6.x versions, on Windows allows user-assisted remote attackers to inject arbitrary web script or HTML in the Local Machine Zone via the Title field of a 1 Dailymotion and possibly 2...

9.3CVSS6.1AI score0.25198EPSS
Exploits0References13
Cvelist
Cvelist
added 2008/01/25 12:0 a.m.30 views

CVE-2008-0454

Cross-zone scripting vulnerability in the Internet Explorer web control in Skype 3.6.0.244, and earlier 3.5.x and 3.6.x versions, on Windows allows user-assisted remote attackers to inject arbitrary web script or HTML in the Local Machine Zone via the Title field of a 1 Dailymotion and possibly 2...

6.1AI score0.25198EPSS
Exploits0References13
CVE
CVE
added 2008/01/25 12:0 a.m.88 views

CVE-2008-0454

The CVE-2008-0454 entry concerns Skype on Windows where cross-zone scripting is possible through the Internet Explorer web control. Specifically, in Skype 3.6.0.244 (and earlier 3.5.x/3.6.x), a user-assisted attacker could inject arbitrary web script/HTML in the Local Machine Zone via the Title f...

9.3CVSS6.2AI score0.25198EPSS
Exploits0References13Affected Software2
CERT
CERT
added 2008/01/22 12:0 a.m.13 views

Skype does not properly filter input from external websites

Overview The Skype client does not properly filter user-supplied input from websites that provide video content to Skype users. Description Skype is a peer-to-peer application that provides Voice over IP VoIP and Instant Messaging services. The Skype client is available for the Microsoft Windows,...

6.5AI score
Exploits0References7
Prion
Prion
added 2007/10/01 5:17 a.m.17 views

Cross site scripting

Cross-zone scripting vulnerability in the internal browser in i-Systems Feedreader 3.10 allows remote attackers to inject arbitrary web script or HTML via an item in a feed, as demonstrated by a WordPress blog update. NOTE: this was originally reported as XSS...

4.3CVSS6.5AI score0.02205EPSS
Exploits0References9Affected Software1
NVD
NVD
added 2007/10/01 5:17 a.m.27 views

CVE-2007-5161

Cross-zone scripting vulnerability in the internal browser in i-Systems Feedreader 3.10 allows remote attackers to inject arbitrary web script or HTML via an item in a feed, as demonstrated by a WordPress blog update. NOTE: this was originally reported as XSS...

4.3CVSS6.1AI score0.02205EPSS
Exploits0References9
Cvelist
Cvelist
added 2007/10/01 12:0 a.m.27 views

CVE-2007-5161

Cross-zone scripting vulnerability in the internal browser in i-Systems Feedreader 3.10 allows remote attackers to inject arbitrary web script or HTML via an item in a feed, as demonstrated by a WordPress blog update. NOTE: this was originally reported as XSS...

6.1AI score0.02205EPSS
Exploits0References9
CVE
CVE
added 2007/10/01 12:0 a.m.42 views

CVE-2007-5161

CVE-2007-5161 describes a cross-zone scripting vulnerability in the internal browser of the i-Systems Feedreader 3.10. The issue allows remote attackers to inject arbitrary web script or HTML via an item in a feed, demonstrated by a WordPress blog update. The vulnerability stems from how the inte...

4.3CVSS6.1AI score0.02205EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder