14 matches found
Outlook Home Page – Another Ruler Vector
Ruler has become a go to tool for us on external engagements, easily turning compromised mailbox credentials into shells. This has resulted in security being pushed forward and Microsoft responding with patches for the two vectors used in Ruler, namely rules and forms. These were patched with...
MS16-104: Internet Explorer URL files Security Feature Bypass (CVE-2016-3353)
On September 13th, 2016 Microsoft released security bulletin MS16-104 1, which addresses several vulnerabilities affecting Internet Explorer. One of those vulnerabilities is CVE-2016-3353, a security feature bypass bug in the way .URL files are handled. This security issue does not allow for remo...
Microsoft Internet Explorer 8 Beta 1 - 'ieframe.dll' Script Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28581/info Microsoft Internet Explorer is prone to a script-injection vulnerability when handling specially crafted requests to 'acrerror.htm' via the 'res://' protocol. The file resides in the 'ieframe.dll' dynamic-link...
Microsoft Registry Symlink - IE Sandbox Escape (MS13-097) (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rex' require 'msf/core/exploit/exe' require 'msf/core/exploit/powershell' class Metasploit3 'MS13-097 Registry Symlink IE Sandbox Escape',...
MS13-097 Registry Symlink IE Sandbox Escape
This module exploits a vulnerability in Internet Explorer Sandbox which allows to escape the Enhanced Protected Mode and execute code with Medium Integrity. The vulnerability exists in the IESetProtectedModeRegKeyOnly function from the ieframe.dll component, which can be abused to force medium...
RealPlayer 11 Browser Active-X Code Execution
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...
RealPlayer 11 Browser (res://ieframe.dll) Remote Arbitrary Code
Exploit for windows platform in category remote exploits 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0...
Internet Explorer 8 Spoof
IE8 beta RC1 res://ieframe.dll/acrerror.htm Spoff Vendor page: www.microsoft.com Advisore:http://lostmon.blogspot.com/ 2009/03/ie8-beta-rc1-resieframedllacrerrorhtm.html vendor notify:yes exploit available:yes Internet explorer 8 has a flaw that allows remote users to spooff the domain name in...
Microsoft Internet Explorer 8 Beta 1 - ieframe.dll Script Injection
Microsoft Internet Explorer 8 Beta 1 - ieframe.dll Script Injection source: https://www.securityfocus.com/bid/28581/info Microsoft Internet Explorer is prone to a script-injection vulnerability when handling specially crafted requests to 'acrerror.htm' via the 'res://' protocol. The file resides ...
Microsoft Internet Explorer 8 Beta 1 - 'ieframe.dll' Script Injection
source: https://www.securityfocus.com/bid/28581/info Microsoft Internet Explorer is prone to a script-injection vulnerability when handling specially crafted requests to 'acrerror.htm' via the 'res://' protocol. The file resides in the 'ieframe.dll' dynamic-link library. An attacker may leverage...
Microsoft Internet Explorer NavCancel.HTM跨站脚本漏洞
Microsoft Internet Explorer是一款流行的WEB浏览器。 Microsoft Internet Explorer包含的navcancl.htm存在输入验证问题,远程攻击者可以利用漏洞进行跨站脚本攻击,可以获得敏感信息。 当特定页面取消时,页面URL会提供给navcancl.htm处理,类似res://ieframe.dll/navcancl.htmhttp://www.site.com,navcancl.htm然后在“Refresh the...
Microsoft Internet Explorer page content spoofing
Crossite scripting in res://ieframe.dll/navcancl.htmhttp://www.site.com page allows to inject HTML code into page...
Microsoft Internet Explorer 7 - NavCancel.HTM Cross-Site Scripting
Microsoft Internet Explorer 7 - NavCancel.HTM Cross-Site Scripting source: https://www.securityfocus.com/bid/22966/info Microsoft Internet Explorer is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied data. An attacker can exploit...
CVE-2006-5913
Microsoft Internet Explorer 7 allows remote attackers to 1 cause a security certificate from a secure web site to appear invalid via a link to res://ieframe.dll/sslnavcancel.htm with the target site in the anchor identifier, which displays the site's URL in the address bar but causes Internet...