Multiple web browsers do not properly interpret BASE and FORM elements when displaying URLs in the status bar

Overview Multiple web browsers do not properly display the location of HTML documents in the status bar. An attacker could exploit this behavior to mislead users into revealing sensitive information. Description Web browsers frequently display the Uniform Resource Locator URL in the status bar wh...

IBM Lotus Domino ?ReadDesign Request Design Element Disclosure

The remote web server allows an attacker to view an XML list of design elements by sending a specially crafted HTTP request to the remote Lotus Domino server: http://target/names.nsf/view?ReadDesign Copyright C 2000 - 2004 Net-Square Solutions Pvt Ltd. By: Hemil Shah Desc: This script will check...

mozilla -- automated file upload

A malicious web page can cause an automated file upload from the victim's machine when viewed with Mozilla with Javascript enabled. This is due to a bug permitting default values for type="file" elements in certain situations...

CHM files execution in Internet Explorer

CHM file HTML-help may contain unsafe ActiveX elements and could lead to code execution. CHM execution may be triggered by calling CHM file as a HTML or via ActiveX elements...

Microsoft Internet Explorer code execution

If page contains large number of elements like FRAME SRC="C:winntregedit.exe"/FRAME application will be executed without user's intervation...

Crossite scripting in Microsoft Internet Explorer

It's possible to get full access to OBJECT's elements...

Security update 1970-01-01

...

Internet Explorer help

None None...