3 matches found
Microsoft DHTML编辑组件ActiveX控件远程代码执行漏洞(MS09-046)
BUGTRAQ ID: 36280 CVECAN ID: CVE-2009-2519 Microsoft Windows是微软发布的非常流行的操作系统。 Windows所捆绑的DHTML编辑组件ActiveX控件(triedit.dll)在格式化HTML标记时存在错误。攻击者可以通过创建特制网页来利用这个漏洞,如果用户查看特制的网页,该漏洞可能允许远程执行指令。成功利用这些漏洞的攻击者可以获得与本地用户相同的用户权限。 Microsoft Windows XP SP3 Microsoft Windows XP SP2 Microsoft Windows Server 2003 SP2...
CVE-2009-2519
CVE-2009-2519 describes a remote code execution vulnerability in the DHTML Editing Component ActiveX Control (triedit.dll) bundled with Windows 2000 SP4, XP SP2/SP3, and Server 2003 SP2. The flaw arises when formatting HTML markup, allowing a crafted web page viewed in Internet Explorer to trigge...
Microsoft DHTML Editing Component ActiveX Control Code Execution (MS09-046; CVE-2009-2519)
The DHTML Editing Component ActiveX control provides an HTML editor that can be used to support dynamic Web site HTML editing in software. A remote code execution vulnerability has been reported in the DHTML Editing Component ActiveX Control. The vulnerability is due to a memory corruption error ...