Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Check Point Advisories
Check Point Advisoriesadded 2015/05/18 12:0 a.m.6 views

Microsoft Internet Explorer HTML Sanitization Information Disclosure (MS12-037) - Ver2 (CVE-2012-1858)

An information disclosure vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to the way that the toStaticHTML API within Internet Explorer handles content using specific strings when sanitizing HTML. A remote attacker could exploit this vulnerability by...

4.3CVSS0.2AI score0.22024EPSS
Exploits6
exploitpack
exploitpackadded 2012/07/12 12:0 a.m.31 views

Microsoft Internet Explorer 9 SharePoint Lync - toStaticHTML HTML Sanitizing Bypass (MS12-037MS12-039MS12-050)

Microsoft Internet Explorer 9 SharePoint Lync - toStaticHTML HTML Sanitizing Bypass MS12-037MS12-039MS12-050 toStaticHTML: The Second Encounter CVE-2012-1858 HTML Sanitizing Bypass - CVE-2012-1858 Original advisory -...

4.3CVSS6.2AI score0.22024EPSS
Exploits6
Exploit DB
Exploit DBadded 2012/07/12 12:0 a.m.43 views

Microsoft Internet Explorer 9 / SharePoint / Lync - toStaticHTML HTML Sanitizing Bypass (MS12-037/MS12-039/MS12-050)

toStaticHTML: The Second Encounter CVE-2012-1858 HTML Sanitizing Bypass - CVE-2012-1858 Original advisory - http://blog.watchfire.com/wfblog/2012/07/tostatichtml-the-second-encounter-cve-2012-1858-html-sanitizing-information-disclosure-introduction-t.html Introduction The toStaticHTML component,...

4.3CVSS6.4AI score0.22024EPSS
Exploits6
Packet Storm
Packet Stormadded 2012/07/11 12:0 a.m.42 views

toStaticHTML HTML Sanitizing Bypass

toStaticHTML: The Second Encounter CVE-2012-1858 HTML Sanitizing Bypass - CVE-2012-1858 Original advisory - http://blog.watchfire.com/wfblog/2012/07/tostatichtml-the-second-encounter-cve-2012-1858-html-sanitizing-information-disclosure-introduction-t.html Introduction The toStaticHTML component,...

4.3CVSS6.4AI score0.22024EPSS
Exploits6
0day.today
0day.todayadded 2012/07/11 12:0 a.m.32 views

IE9 / SharePoint / Lync toStaticHTML HTML Sanitizing Bypass

Exploit for windows platform in category dos / poc toStaticHTML: The Second Encounter CVE-2012-1858 HTML Sanitizing Bypass - CVE-2012-1858 Original advisory -...

7AI score0.22024EPSS
Exploits6
seebug.org
seebug.orgadded 2012/06/13 12:0 a.m.41 views

Microsoft Lync/Office Communicator HTML代码过滤漏洞 (CVE-2012-1858) (MS12-039)

CVE ID: CVE-2012-1858 Microsoft Lync 新一代企业整合沟通平台(前身为 Communications Server),提供了一种全新的、直观的用户体验,跨越 PC、Web、手机等其他移动设备,将不同的沟通方式集成到一个平台之中。 Microsoft Lync HTML过滤时存在信息泄露漏洞,可允许攻击者执行XSS攻击和运行脚本。 0 Microsoft Lync 2010 Microsoft Office Communicator 2007 临时解决方法: 如果您不能立刻安装补丁或者升级,建议您采取以下措施以降低威胁:...

4.3CVSS6.9AI score0.22024EPSS
Exploits6
CVE
CVEadded 2012/06/12 10:0 p.m.184 views

CVE-2012-1858

CVE-2012-1858 concerns the toStaticHTML (SafeHTML) sanitization function used in Internet Explorer 8/9, SharePoint, and Lync/Communicator. The vulnerability arises because the HTML sanitization logic can be bypassed via crafted HTML/CSS, enabling cross-site scripting (XSS) or information disclosu...

4.3CVSS5.2AI score0.22024EPSS
Exploits6References6Affected Software2
Check Point Advisories
Check Point Advisoriesadded 2012/06/12 12:0 a.m.10 views

Internet Explorer HTML Sanitization Information Disclosure (MS12-039; CVE-2012-1858)

An information disclosure vulnerability has been reported in Microsoft Internet Explorer...

5.7AI score0.22024EPSS
Exploits6
Rows per page
Query Builder