8 matches found
cjay-rfi.txt
/ \ / \ | | | | | | | | | | | / | | | | | | | ' / | | ' \ / \ | | | | || | || | | | \ | | | | / | , |/ /|| ||| |||| / | |/ INFO: Program Title Cjay Content 3 WYSIWYG IE 5.5+ Remote File Inclusion Vulnerability Description Editor module for XOOPS CMS Vuln Code In...
CVE-2002-0190
CVE-2002-0190 affects Microsoft Internet Explorer 5.01, 5.5 and 6.0. A malformed web page that requires NetBIOS connectivity can cause Zone Spoofing, allowing remote code execution under fewer security restrictions. OpenVAS entries reference the IE cumulative patch 890923 (MS05-020) as a remediat...
CVE-2002-0026
IE 5.5/6.0 remote code execution via an object handling asynchronous events after initial security checks. Exploitation would bypass scripting restrictions, enabling arbitrary script execution. Remediation notes in connected docs point to Microsoft MS02-005 (and MS05-020) patches; OpenVAS entries...
CVE-2001-0150
Affected software: Internet Explorer 5.5 and earlier running on Windows, when used with the Telnet client provided by Services for Unix (SFU) 2.0. Vulnerability: IE can invoke Telnet with unsafe command-line arguments supplied by a web page, enabling remote attackers to cause arbitrary command ex...
CVE-2000-0982
Consolidated details: The CVE affects Internet Explorer prior to version 5.5, where cached credentials for a secure site could be forwarded to insecure pages on the same site. This exposure could let remote attackers obtain credentials by monitoring connections to the web server. Root cause is th...
IE 5.5/Outlook java security vulnerability - reading arbitrary local files and URLs
Georgi Guninski security advisory 24, 2000 IE 5.5/Outlook java security vulnerability - reading arbitrary local files and URLs Systems affected: IE 5.5/Outlook/Outlook Express - probably other versions, have not tested Risk: High Date: 18 October 2000 Legal Notice: This Advisory is Copyright c 20...
IE 5.5/Outlook Express security vulnerability - GetObject() expose user's files
Georgi Guninski security advisory 22, 2000 IE 5.5/Outlook Express security vulnerability - GetObject expose user's files Systems affected: IE 5.5, Outlook Express,probably Outlook - Win98/2000. Probably other versions - have not tested. Risk: High Date: 26 September 2000 Legal Notice: This Adviso...
IE 5.5 and 5.01 vulnerability - reading at least local and from any host text and parsed html files
Georgi Guninski security advisory 16, 2000 IE 5.5 and 5.01 vulnerability - reading at least local and from any host text and parsed html files Systems affected: IE 5.5, 5.01 / Win98 - probably other versions, have not tested Risk: Medium Disclaimer: The opinions expressed in this advisory and...