NTFS file stream with RAR join forces to create free kill Trojan-vulnerability warning-the black bar safety net

Maybe from the title you can know the article probably meant, good! Today I want to talk about is the NTFS file stream how to with WINRAR teamed up with“packers”Trojan. Tip: the flow STREAM is NTFS under the concept, currently only NTFS supports streams. Stream attached to the file exists, can be...

Sun Java Applet 1.x - Invocation Version Specification

source: https://www.securityfocus.com/bid/11757/info Java provides support for dynamic and static versioning when loading applets in the Java plug-in. This means that during the invocation of an applet, a user can request that a particular version of a plug-in be used to run the applet. The featu...

CVE-2003-0223

Cross-site scripting vulnerability XSS in the ASP function responsible for redirection in Microsoft Internet Information Server IIS 4.0, 5.0, and 5.1 allows remote attackers to embed a URL containing script in a redirection message...

Captaris Infinite WebMail 3.61.5 - HTML Injection

source: https://www.securityfocus.com/bid/6411/info An HTML injection vulnerability has been discovered in Captaris Infinite WebMail. Due to insufficient sanitization of HTML content, it is possible for an attacker to embed malicious script code into HTML email messages. This may allow an attacke...

Macromedia Flash plugin can read local files

.---. .---------- / / ------ / / / ----- ////// ' / --- //// / // : : --- // / / / '-- // //.. ====UU====UU==== '//|| Macromedia Flash plugin can read local files Description : Macromedia Flash Player is the leading rich client for Internet content and applications across the broadest range of...

CVE-2002-0078

The zone determination function in Microsoft Internet Explorer 5.5 and 6.0 allows remote attackers to run scripts in the Local Computer zone by embedding the script in a cookie, aka the "Cookie-based Script Execution" vulnerability...

CVE-2002-0078

Affected software: Microsoft Internet Explorer 5.5 and 6.0. Vulnerability: zone determination flaw allows a script embedded in a cookie to execute in the Local Computer zone, enabling in‑the‑wild commands with the victim’s privileges. Impact: arbitrary commands can run on the target system due to...

CVE-2002-0474

Cross-site scripting vulnerability in ZeroForum allows remote attackers to execute arbitrary Javascript on web clients by embedding the script within IMG image tag...

SunShop Shopping Cart 1.5/2.x - User-Embedded Scripting

source: https://www.securityfocus.com/bid/4506/info SunShop is commercial web store software. It is written in PHP, and will run on most Unix and Linux operating systems as well as Microsoft Windows. SunShop allows attackers to embed arbitrary script code into form fields. This may enable a remot...

guninski-53.txt

Georgi Guninski security advisory 53, 2002 More Office XP problems Systems affected: Office XP Risk: High Date: 31 March 2002 Legal Notice: This Advisory is Copyright c 2002 Georgi Guninski. You may distribute it unmodified. You may not modify it and distribute it or distribute parts of it withou...

Pine update fixes insecure URL-handling

Pine 4.44 packages are now available to fix a problem with insecure URL handling. Here's the information from the Slackware 8.0 ChangeLog: Sat Jan 12 13:05:33 PST 2002 patches/packages/pine.tgz: Fix a security problem with pine by upgrading to pine4.44. More details from the Pine Announcement Lis...

CVE-2001-0829

A cross-site scripting vulnerability in Apache Tomcat 3.2.1 allows a malicious webmaster to embed Javascript in a request for a .JSP file, which causes the Javascript to be inserted into an error message...

CVE-2001-0829

A cross-site scripting vulnerability in Apache Tomcat 3.2.1 allows a malicious webmaster to embed Javascript in a request for a .JSP file, which causes the Javascript to be inserted into an error message...

CVE-2001-0240

Microsoft Word before Word 2002 allows attackers to automatically execute macros without warning the user via a Rich Text Format RTF document that links to a template with the embedded macro...

Security Update for Windows XP x64 Edition (KB921503)

A security issue has been identified that could allow an attacker to remotely compromise your Windows-based system using Object Linking and Embedding OLE Automation and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item,...

Security Update for Windows Vista for x64-based Systems (KB943055)

A security issue has been identified that could allow an attacker to remotely compromise your Windows-based system using Object Linking and Embedding OLE Automation and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item,...

Security Update for Windows Server 2003 for Itanium-based Systems (KB921503)

A security issue has been identified that could allow an attacker to remotely compromise your Windows-based system using Object Linking and Embedding OLE Automation and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item,...

Security Update for Windows Server 2003 (KB921503)

A security issue has been identified that could allow an attacker to remotely compromise your Windows-based system using Object Linking and Embedding OLE Automation and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item,...