4 matches found
CVE-2016-10605
dalek-browser-ie is Internet Explorer bindings for DalekJS. dalek-browser-ie downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping out the requested binary with an attacker controlled binary if the...
CVE-2016-10605
dalek-browser-ie is Internet Explorer bindings for DalekJS. dalek-browser-ie downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping out the requested binary with an attacker controlled binary if the...
CVE-2016-10605
dalek-browser-ie is Internet Explorer bindings for DalekJS. dalek-browser-ie downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping out the requested binary with an attacker controlled binary if the...
CVE-2016-10605
The CVE-2016-10605 entry concerns the dalek-browser-ie bindings for DalekJS, which downloads binary resources over HTTP. This creates a MITM risk where an attacker on the network can intercept and replace the binary, potentially enabling remote code execution on the user’s system. Public advisori...