Microsoft Internet Explorer - mshtml.dll CSS Parsing Buffer Overflow

Microsoft Internet Explorer - mshtml.dll CSS Parsing Buffer Overflow / Taken from http://www.securiteam.com/exploits/5NP042KF5A.html The exploit will create a .CSS file that should be included in an HTML file. When a user loads the HTML file, Internet Explorer will try to parse the CSS and will...

MS Internet Explorer "mshtml.dll" CSS Parsing Buffer Overflow

Exploit for unknown platform in category remote exploits ============================================================= MS Internet Explorer "mshtml.dll" CSS Parsing Buffer Overflow ============================================================= / The exploit will create a .CSS file that should be...

Microsoft Internet Explorer - 'mshtml.dll' CSS Parsing Buffer Overflow

/ Taken from http://www.securiteam.com/exploits/5NP042KF5A.html The exploit will create a .CSS file that should be included in an HTML file. When a user loads the HTML file, Internet Explorer will try to parse the CSS and will trigger the buffer overflow. / //Exploit Code: include include include...

MS Internet Explorer ""mshtml.dll"" CSS Parsing Buffer Overflow

No description provided by source. / Taken from http://www.securiteam.com/exploits/5NP042KF5A.html The exploit will create a .CSS file that should be included in an HTML file. When a user loads the HTML file, Internet Explorer will try to parse the CSS and will trigger the buffer overflow. /...

Microsoft Internet Explorer contains a buffer overflow in CSS parsing

Overview A buffer overflow vulnerability exists in the way that Microsoft Internet Explorer processes Cascading Style Sheets CSS. This may allow an attacker to execute arbitrary code or cause a denial of service. Description CSS is a mechanism for adding style to web documents. Microsoft Internet...

CVE-2004-0842

The CVE-2004-0842 issue affects Internet Explorer 6.0 SP1 and earlier (Windows platforms) and is caused by an unchecked buffer in CSS parsing that can trigger heap memory corruption via crafted CSS (for example, the “@;/*”” sequence). Successful exploitation could lead to remote code execution or...

Mozilla Firefox 3.x < 3.0.1 Multiple Vulnerabilities

Binary data 4591.prm...

Mozilla Firefox < 2.0.0.16 / 3.0.1 Multiple Vulnerabilities

Binary data 4588.prm...

Microsoft Internet Explorer 5.0.1 - CSS Style Sheet Memory Corruption

source: https://www.securityfocus.com/bid/10382/info A vulnerability identified in Internet Explorer may allow an attacker to cause the application to crash. The issue presents itself when the browser attempts to process an HTML page containing a table and loads a css style sheet from a file. Thi...

Microsoft Internet Explorer 5.0.1 - CSS Style Sheet Memory Corruption

Microsoft Internet Explorer 5.0.1 - CSS Style Sheet Memory Corruption source: https://www.securityfocus.com/bid/10382/info A vulnerability identified in Internet Explorer may allow an attacker to cause the application to crash. The issue presents itself when the browser attempts to process an HTM...

WebCT Campus Edition 4.1 - Cross site scripting using CSS @import

Name: WebCT Campus Edition 4.1 - Cross site scripting using CSS @import Release date: 2004/03/29 Application: WebCT Campus Edition 4.1 4.1.1.5, possibly others Vendor URL: http://www.webct.com/ WebCT Inc. Author: Simon Boulet simon boulet divahost net Legal Notice: -------------------- This...

CVE-2004-1872

Cross-site scripting XSS vulnerability in WebCT Campus Edition 4.1.1.5 allows remote attackers to inject arbitrary web script or HTML via the @import URL function in a CSS style tag...

CVE-2004-0352

The vulnerability CVE-2004-0352 affects Cisco 11000 Series Content Services Switches running WebNS. Specifically, WebNS 5.0(x) before 05.0(04.07)S and 6.10(x) before 06.10(02.05)S are susceptible. A remote attacker can trigger a denial of service (device reset) by sending a malformed UDP packet t...

Cisco Security Advisory: Cisco CSS 11000 Series Content Services Switches Malformed UDP Packet Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco CSS 11000 Series Content Services Switches Malformed UDP Packet Vulnerability Revision 1 For Public Release 2004 March 4 at 1700 UTC GMT ---------------------------------------------------------------------- Contents...

Cisco CSS 11000 Series Content Services Switch vulnerable to DoS via malformed UDP packets

Overview Several models of the Cisco Content Services Switch contain a vulnerability in their management interface that allows an attacker to restart the switch, resulting in a denial of service attack. Description The Cisco CSS 11000 Series Content Services Switches contain a vulnerability in...

Cisco CSS 11000 Series Content Services Switches Malformed UDP Packet Vulnerability

...

LiveJournal 1.1 - CSS HTML Injection

LiveJournal 1.1 - CSS HTML Injection source: https://www.securityfocus.com/bid/9727/info LiveJournal is reportedly prone to HTML injection via Cascading Style Sheet CSS tags. It is possible to inject hostile HTML and script code into journal entries through this vulnerability. This could...

Security Advisory: CSS Vulnerability in Web Froums Server 1.6

Security Advisory: CSS Vulnerability in Web Froums Server 1.6 Data: 27.01.2004 Application: Web Froums Server 1.6 Vendor: www.minihttpserver.net Versions: 1.6 and Shareware : Platforms: Windows Bug: JS/HTML code injection. Risk: Low Mini-description for Forums Web Server v1.6: "WebForums Server...

CVE-2003-1505

Microsoft Internet Explorer 6.0 allows remote attackers to cause a denial of service crash by creating a web page or HTML e-mail with a textarea in a div element whose scrollbar-base-color is modified by a CSS style, which is then moved...

Caucho Resin Crossite Scripting

Crossite scipring in few CSS examples...