5 matches found
Microsoft IE多个跨域信息泄露和内存破坏漏洞(MS08-058)
BUGTRAQ ID: 31615,31616,31654,31618 CVECAN ID: CVE-2008-3472,CVE-2008-3473,CVE-2008-3474,CVE-2008-3476 Internet Explorer是Windows操作系统中捆绑的非常流行的WEB浏览器。 Internet Explorer中的多个安全漏洞可能允许恶意攻击者执行跨站脚本攻击,完全入侵用户的系统。 1 处理某些HTML元素或事件时的漏洞可能导致Internet Explorer错误的解释脚本来源,导致以其他域或安全区的环境执行脚本代码,或允许脚本访问另一个域或Internet...
CVE-2008-3473
CVE-2008-3473 and related cross-domain IE vulnerabilities affect Internet Explorer 6/7. Root cause: IE’s incorrect handling of the origin domain/zone for web script (Event Handling Cross-Domain and related) enables remote code execution or information disclosure across domains/zones. Affected: IE...
Cumulative Security Update for Internet Explorer (956390)
This host is missing critical security update according to Microsoft Bulletin MS08-058. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
MS08-058: Microsoft Internet Explorer Multiple Vulnerabilities (956390)
The remote host is missing the IE cumulative security update 956390. The remote version of IE is vulnerable to several flaws that could allow an attacker to execute arbitrary code on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid34403;...
Internet Explorer Mouse Event Handling Remote Code Execution (MS08-058; CVE-2008-3473)
Microsoft Internet Explorer is the most widely used Internet browser. A cross-domain vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to the way Internet Explorer is handling the mouse event. A remote attacker can trigger this vulnerability by convincing a user to vie...