4 matches found
Cumulative Security Update for Internet Explorer (950759)
This host has Microsoft Internet Explorer installed, which is prone to HTTP request splitting/smuggling and HTML Objects Memory Corruption Vulnerabilities. OpenVAS Vulnerability Test $Id: gbms08-031.nasl 5863 2017-04-05 07:38:11Z antu123 $ Cumulative Security Update for Internet Explorer 950759...
CVE-2008-1442
CVE-2008-1442 concerns a heap-based buffer overflow in the substringData method of Internet Explorer 6 and 7, allowing remote code execution via crafted web pages (HTML Objects Memory Corruption). The connected MSKB (MS08-031) confirms multiple affected IE versions on Windows XP/2003 family and d...
Microsoft IE HTML对象substringData()堆溢出漏洞(MS08-031)
BUGTRAQ ID: 29556 CVECAN ID: CVE-2008-1442 Internet Explorer是微软发布的非常流行的WEB浏览器。 Internet Explorer显示包含对HTML对象的某些异常方法调用的网页的方式中存在堆溢出漏洞,如果DOM对象以可控的方式调用了substringData的话,就可以触发这个漏洞。攻击者可以通过构建特制的网页来利用该漏洞。当用户查看网页时,该漏洞可能允许远程执行指令。成功利用此漏洞的攻击者可以获得与登录用户相同的用户权限。 Microsoft Internet Explorer 7.0 Microsoft Internet...
ZDI-08-039: Microsoft Internet Explorer DOM Ojbect substringData() Heap Overflow Vulnerability
ZDI-08-039: Microsoft Internet Explorer DOM Ojbect substringData Heap Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-039 June 10, 2008 -- CVE ID: CVE-2008-1442 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Internet Explorer -- TippingPointTM IPS Custome...