Lucene search
K

52 matches found

Cvelist
Cvelist
added 2011/06/16 8:21 p.m.31 views

CVE-2011-1894

The MHTML protocol handler in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle a MIME format in a request for embedded content in an HTML document, which allows...

5.5AI score0.11411EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2010/02/17 9:12 p.m.10 views

Mozilla bypass of same-origin policy due to improper SVG document processing (MFSA 2010-05)

Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, and SeaMonkey before 2.0.3, does not properly support the application/octet-stream content type as a protection mechanism against execution of web script in certain circumstances involving SVG and the EMBED element, which allows remote...

4.3CVSS5.9AI score0.02965EPSS
Exploits0References4
Prion
Prion
added 2009/08/12 7:30 p.m.20 views

Hardcoded credentials

WebKit in Apple Safari before 4.0.3 does not properly restrict the URL scheme of the pluginspage attribute of an EMBED element, which allows user-assisted remote attackers to launch arbitrary file: URLs and obtain sensitive information via a crafted HTML document...

7.1CVSS6AI score0.02387EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2009/08/12 7:30 p.m.24 views

CVE-2009-2200

WebKit in Apple Safari before 4.0.3 does not properly restrict the URL scheme of the pluginspage attribute of an EMBED element, which allows user-assisted remote attackers to launch arbitrary file: URLs and obtain sensitive information via a crafted HTML document...

7.1CVSS7.8AI score0.02387EPSS
Exploits0References7
seebug.org
seebug.org
added 2009/04/21 12:0 a.m.37 views

MS Internet Explorer EMBED Memory Corruption PoC (MS09-014)

No description provided by source. BODY onload=go/BODY !-- MS09-014: MSIE EMBED element race condition memory corruption Code by SkyLined [email protected] http://skypher.com/SkyLined/Repro/MSIE/EMBED%20memory%20corruption/repro3.html...

7.1AI score
Exploits0
0day.today
0day.today
added 2009/04/20 12:0 a.m.59 views

MS Internet Explorer EMBED Memory Corruption PoC (MS09-014)

Exploit for unknown platform in category dos / poc =========================================================== MS Internet Explorer EMBED Memory Corruption PoC MS09-014 =========================================================== var asMimeTypes = "x-world/x-3dmf", "x-world/x-3dmf",...

7AI score
Exploits0
securityvulns
securityvulns
added 2009/04/20 12:0 a.m.47 views

MS09-014: MSIE EMBED element race condition memory corruption

Some details + repro: http://skypher.com/index.php/2009/04/19/ms09-014-embed-element-memory-corruption/ Cheers, SkyLined Berend-Jan Wever [email protected] http://skypher.com/SkyLined...

1.5AI score
Exploits0
Exploit DB
Exploit DB
added 2009/04/20 12:0 a.m.53 views

Microsoft Internet Explorer - EMBED Memory Corruption (PoC) (MS09-014)

http://skypher.com/SkyLined/Repro/MSIE/EMBED%20memory%20corruption/repro3.html http://skypher.com/index.php/2009/04/19/ms09-014-embed-element-memory-corruption -- var asMimeTypes = "x-world/x-3dmf", "x-world/x-3dmf", "application/octet-stream", "application/x-authorware-bin",...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2006/12/24 12:0 a.m.20 views

Apple QuickTime插件任意脚本执行漏洞

Apple QuickTime是一款流行的媒体播放程序。 Apple QuickTime处理Media Link文件存在问题,远程攻击者可以利用漏洞导致任意脚本代码执行,获得敏感信息。 Media Link文件提供对媒体文件更方便的访问模式,.qtl文件使用xml语言,类似语法如下: ?xml version="1.0" ?quicktime type="application/x-quicktime-media-link"? embed src="Sample.mov" autoplay="true"/...

6.9AI score
Exploits0
NVD
NVD
added 2006/02/14 7:6 p.m.35 views

CVE-2006-0005

Buffer overflow in the plug-in for Microsoft Windows Media Player WMP 9 and 10, when used in browsers other than Internet Explorer and set as the default application to handle media files, allows remote attackers to execute arbitrary code via HTML with an EMBED element containing a long src...

9.3CVSS7.5AI score0.43861EPSS
Exploits8References10
Prion
Prion
added 2006/02/14 7:6 p.m.19 views

Buffer overflow

Buffer overflow in the plug-in for Microsoft Windows Media Player WMP 9 and 10, when used in browsers other than Internet Explorer and set as the default application to handle media files, allows remote attackers to execute arbitrary code via HTML with an EMBED element containing a long src...

9.3CVSS7.9AI score0.43861EPSS
Exploits8References10Affected Software5
Cvelist
Cvelist
added 2006/02/14 7:0 p.m.41 views

CVE-2006-0005

Buffer overflow in the plug-in for Microsoft Windows Media Player WMP 9 and 10, when used in browsers other than Internet Explorer and set as the default application to handle media files, allows remote attackers to execute arbitrary code via HTML with an EMBED element containing a long src...

7.5AI score0.43861EPSS
Exploits8References10
Rows per page
Query Builder