CVE-2004-1050

CVE-2004-1050 affects Internet Explorer 6. A heap-based buffer overflow occurs when parsing long NAME or SRC attributes in IFRAME/FRAME/EMBED elements, allowing remote code execution. Exploitation typically involves loading a crafted page; CVSS notes high risk (network exploit, no user interactio...

Microsoft IE FRAME/IFRAME/EMBED Tag Overflow (Bofra Worm Detection)

The remote host seems to have been infected with the Bofra worm or one of its variants, which infects machines via an Internet Explorer IFRAME exploit. It is very likely this system has been compromised. Bofra virus detection Author: Brian Smith-Sweeney [email protected]...

Microsoft Internet Explorer does not properly interpret IFRAME elements when displaying URLs in the status bar

Overview Microsoft Internet Explorer does not properly display the location of HTML documents in the status bar. An attacker could exploit this behavior to mislead users into revealing sensitive information. Description Web browsers frequently display the Uniform Resource Locator URL in the statu...

Microsoft Internet Explorer 6 - IFRAME Tag Buffer Overflow

BoF PoC exploit iS' ,SS" Copyright C 2003, 2004 by Berend-Jan Wever. YS, .ss ,sY" http://www.edup.tudelft.nl/bjwever "YSSP" sSS This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License version 2, 1991 as published by the Free Softwa...

MS Internet Explorer (IFRAME Tag) Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ========================================================= MS Internet Explorer IFRAME Tag Buffer Overflow Exploit ========================================================= BoF PoC exploit iS' ,SS" Copyright C 2003, 2004 by Berend-Jan Wever...

MS Internet Explorer (IFRAME Tag) Buffer Overflow Exploit

No description provided by source. HTML!-- ,sSSSs, Ss, Internet Exploiter v0.1 SS" YS' 'Ss. MSIE IFRAME src=... name="..." BoF PoC exploit iS' ,SS" Copyright C 2003, 2004 by Berend-Jan Wever. YS, .ss ,sY" http://www.edup.tudelft.nl/bjwever "YSSP" sSS [email protected] This program is free...

Microsoft Internet Explorer 6 - IFRAME Tag Buffer Overflow

Microsoft Internet Explorer 6 - IFRAME Tag Buffer Overflow BoF PoC exploit iS' ,SS" Copyright C 2003, 2004 by Berend-Jan Wever. YS, .ss ,sY" http://www.edup.tudelft.nl/bjwever "YSSP" sSS This program is free software; you can redistribute it and/or modify it under the terms of the GNU General...

Opera Local File/Directory Detection (GM#009-OP)

GreyMagic Security Advisory GM009-OP ===================================== By GreyMagic Software, 17 Aug 2004. Available in HTML format at http://www.greymagic.com/security/advisories/gm009-op/. Topic: Opera Local File/Directory Detection. Discovery date: 04 Aug 2004. Affected applications:...

Opera Web Browser 7.5 - Resource Detection

Opera Web Browser 7.5 - Resource Detection source: https://www.securityfocus.com/bid/10961/info Opera Web Browser is prone to a security weakness that may permit an attacker to determine the existence of resources on a vulnerable computer. An attacker can use an IFRAME that is accessible within t...

MS Internet Explorer Remote Wscript.Shell Exploit

Exploit for unknown platform in category remote exploits ================================================= MS Internet Explorer Remote Wscript.Shell Exploit ================================================= ----------------------------------------------------- default.htm...

Re: [Full-Disclosure] THE VULNERABILITY STILL WORKS AFTER TODAY'S PATCH

Well it's not quite as easy as you make it sound I think you only took a look at http-equiv's example I posted to full disclosure and based your post on that. You see this: --snip-- iframe src="c:windowswebtip.htm" style="width:400px;height:200px;"/iframe textarea id="code" style="display:none;"...

Microsoft Internet Explorer - Remote Wscript.Shell

Microsoft Internet Explorer - Remote Wscript.Shell ----------------------------------------------------- default.htm ------------------------------------------------------- function InjectedDuringRedirection...

Opera Web Browser 7.0 - Remote IFRAME Denial of Service

Opera Web Browser 7.0 - Remote IFRAME Denial of Service source: https://www.securityfocus.com/bid/10081/info A denial of service vulnerability has been reported to affect Opera Web Browser. The issue is reported to present itself when Opera attempts to render IFRAME HTML tags that contain an...

Opera Web Browser 7.0 - Remote IFRAME Denial of Service

source: https://www.securityfocus.com/bid/10081/info A denial of service vulnerability has been reported to affect Opera Web Browser. The issue is reported to present itself when Opera attempts to render IFRAME HTML tags that contain an invalid source argument. A remote attacker may exploit this...

Kerio Personal Firewall 4 and IE 6 "Bug"

---------------- Kerio Personal Firewall 4 - ---------------- +Web Filtering enabled problem If a URL contains  131213 Kerio Firewall Crashes http://www.google.com/search?hl=en&ie=UTF-8&oe=UTF-8&q=&btnG=Google +Search also it can be passed to a browser via IFRAME tag and crash Kerio without...

Microsoft Internet Explorer 5 - Shell: IFrame Cross-Zone Scripting (2)

Microsoft Internet Explorer 5 - Shell: IFrame Cross-Zone Scripting 2 source: https://www.securityfocus.com/bid/9628/info It has been alleged that Microsoft Internet Explorer is prone to a weakness that may potentially allow for the execution of hostile script code in the context of the My Compute...

Microsoft Internet Explorer 5 - Shell: IFrame Cross-Zone Scripting (1)

Microsoft Internet Explorer 5 - Shell: IFrame Cross-Zone Scripting 1 source: https://www.securityfocus.com/bid/9628/info It has been alleged that Microsoft Internet Explorer is prone to a weakness that may potentially allow for the execution of hostile script code in the context of the My Compute...

showexp.txt

Wait For 8 Seconds... setTimeout function showHelp"mk:@MSITStore:iexplore.chm::..\..\..\..\program files\winamp\skins\xvulnx.wsz::\self-exec.html"; , 8000 ;...

Redirection and refresh parses local file

Redirection and refresh parses local file "that's all" is the end of file if you are in a hurry tested OS:WinXp Microsoft Internet Explorer v6.Sp1; up-to-date on 2003/10/30 demo http://www.safecenter.net/UMBRELLAWEBV4/IredirNrefresh/IredirNrefresh-MyPage.htm exp if an iframe whose SRC points to a...

Opera Web Browser 7 - IFRAME Zone Restriction Bypass

source: https://www.securityfocus.com/bid/8887/info A flaw in the Opera web browsers security model has been discovered that could allow an attacker to access a users filesystem within the Local Zone. The problem occurs when handling malformed HTML iframes which point to local system locations...