52 matches found
CVE-2011-1894
The MHTML protocol handler in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle a MIME format in a request for embedded content in an HTML document, which allows...
Mozilla bypass of same-origin policy due to improper SVG document processing (MFSA 2010-05)
Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, and SeaMonkey before 2.0.3, does not properly support the application/octet-stream content type as a protection mechanism against execution of web script in certain circumstances involving SVG and the EMBED element, which allows remote...
Hardcoded credentials
WebKit in Apple Safari before 4.0.3 does not properly restrict the URL scheme of the pluginspage attribute of an EMBED element, which allows user-assisted remote attackers to launch arbitrary file: URLs and obtain sensitive information via a crafted HTML document...
CVE-2009-2200
WebKit in Apple Safari before 4.0.3 does not properly restrict the URL scheme of the pluginspage attribute of an EMBED element, which allows user-assisted remote attackers to launch arbitrary file: URLs and obtain sensitive information via a crafted HTML document...
MS Internet Explorer EMBED Memory Corruption PoC (MS09-014)
No description provided by source. BODY onload=go/BODY !-- MS09-014: MSIE EMBED element race condition memory corruption Code by SkyLined [email protected] http://skypher.com/SkyLined/Repro/MSIE/EMBED%20memory%20corruption/repro3.html...
MS Internet Explorer EMBED Memory Corruption PoC (MS09-014)
Exploit for unknown platform in category dos / poc =========================================================== MS Internet Explorer EMBED Memory Corruption PoC MS09-014 =========================================================== var asMimeTypes = "x-world/x-3dmf", "x-world/x-3dmf",...
MS09-014: MSIE EMBED element race condition memory corruption
Some details + repro: http://skypher.com/index.php/2009/04/19/ms09-014-embed-element-memory-corruption/ Cheers, SkyLined Berend-Jan Wever [email protected] http://skypher.com/SkyLined...
Microsoft Internet Explorer - EMBED Memory Corruption (PoC) (MS09-014)
http://skypher.com/SkyLined/Repro/MSIE/EMBED%20memory%20corruption/repro3.html http://skypher.com/index.php/2009/04/19/ms09-014-embed-element-memory-corruption -- var asMimeTypes = "x-world/x-3dmf", "x-world/x-3dmf", "application/octet-stream", "application/x-authorware-bin",...
Apple QuickTime插件任意脚本执行漏洞
Apple QuickTime是一款流行的媒体播放程序。 Apple QuickTime处理Media Link文件存在问题,远程攻击者可以利用漏洞导致任意脚本代码执行,获得敏感信息。 Media Link文件提供对媒体文件更方便的访问模式,.qtl文件使用xml语言,类似语法如下: ?xml version="1.0" ?quicktime type="application/x-quicktime-media-link"? embed src="Sample.mov" autoplay="true"/...
CVE-2006-0005
Buffer overflow in the plug-in for Microsoft Windows Media Player WMP 9 and 10, when used in browsers other than Internet Explorer and set as the default application to handle media files, allows remote attackers to execute arbitrary code via HTML with an EMBED element containing a long src...
Buffer overflow
Buffer overflow in the plug-in for Microsoft Windows Media Player WMP 9 and 10, when used in browsers other than Internet Explorer and set as the default application to handle media files, allows remote attackers to execute arbitrary code via HTML with an EMBED element containing a long src...
CVE-2006-0005
Buffer overflow in the plug-in for Microsoft Windows Media Player WMP 9 and 10, when used in browsers other than Internet Explorer and set as the default application to handle media files, allows remote attackers to execute arbitrary code via HTML with an EMBED element containing a long src...