10 matches found
EUVD-2017-3797
Malware in sbrugna...
CVE-2021-35239
A security researcher found a user with Orion map manage rights could store XSS through via text box hyperlink...
Mozilla: Theft of user history data through drag and drop of hyperlinks to and from bookmarks
If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user's browser history can be run and transmitted to the content page via drop event data. This allows for...
UBUNTU-CVE-2019-11698
If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar and the resulting bookmark is subsequently dragged and dropped into the web content area, an arbitrary query of a user's browser history can be run and transmitted to the content page via drop event data. This allows for...
USN-181-1: Mozilla products vulnerability
Tom Ferris discovered a buffer overflow in the Mozilla products Mozilla browser, Firefox, Thunderbird. By tricking an user to click on a Hyperlink with a specially crafted destination URL, a remote attacker could crash the application. It might even be possible to exploit this vulnerability to...
Microsoft Outlook Express - JavaScript Execution
From: To: Subject:MSOE Scripting Example Content-Type:text/html click here to test milw0rm.com 2004-07-13...
Adobe Acrobat Reader (UNIX) 5.0 6 / Xpdf 0.9x Hyperlinks - Arbitrary Command Execution
source: https://www.securityfocus.com/bid/7912/info A vulnerability has been reported for multiple PDF viewers for Unix variant operating systems. The problem is said to occur when hyperlinks have been enabled within the viewer. Allegedly, by placing a specially formatted hyperlink within a PDF...
CVE-2001-0828
A cross-site scripting vulnerability in Caucho Technology Resin before 1.2.4 allows a malicious webmaster to embed Javascript in a hyperlink that ends in a .jsp extension, which causes an error message that does not properly quote the Javascript...
AOL Instant Messenger 4.x - Hyperlink Denial of Service
source: https://www.securityfocus.com/bid/4244/info AOL Instant Messenger AIM is a real time messaging service. The AIM client runs on Microsoft Windows operating systems. It is possible to crash the AIM client by sending a specially formatted hyper-link to a user. When the user attempts to launc...
aol.aim.url.DoS.txt
Date: Mon, 19 Apr 1999 22:00:00 -0500 From: Adam Brown To: [email protected] Subject: AOL Instant Messenger URL Crash There is a bug in the newer versions of AOL's Instant Messenger that will cause the client to crash when exploited. All builds of version 2.0 that I've tested seem to be...