2 matches found
CVE-2008-0454
Cross-zone scripting vulnerability in the Internet Explorer web control in Skype 3.6.0.244, and earlier 3.5.x and 3.6.x versions, on Windows allows user-assisted remote attackers to inject arbitrary web script or HTML in the Local Machine Zone via the Title field of a 1 Dailymotion and possibly 2...
CVE-2008-0454
The CVE-2008-0454 entry concerns Skype on Windows where cross-zone scripting is possible through the Internet Explorer web control. Specifically, in Skype 3.6.0.244 (and earlier 3.5.x/3.6.x), a user-assisted attacker could inject arbitrary web script/HTML in the Local Machine Zone via the Title f...