5123 matches found
Mirabilis ICQ 2002 Sound Scheme Remote Configuration Modification Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5239/info ICQ is an instant messenger client for Microsoft Windows systems. ICQ includes support for sound schemes. ICQ sound scheme files are generally given the .scm extension. Reportedly, it is possible for a remote...
Internet Explorer 4.0/5.0/5.5 preview/5.0.1 - DocumentComplete() Cross Frame Access Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1224/info The DocumentComplete function in IE does not properly validate origin domains. Therefore it is possible for a remote webserver to gain read access to local files on the machine of any website visitor or email...
PHPmotion <= 2.1 CSRF Vulnerability
No description provided by source. PHPmotion = 2.1 CSRF vulnerability Author: Ausome1 Email: [email protected] Website: http://www.enigmagroup.org Description: Change a member's password and/or email...
Opera Web Browser 7.5 Resource Detection Weakness
No description provided by source. source: http://www.securityfocus.com/bid/10961/info Opera Web Browser is prone to a security weakness that may permit an attacker to determine the existence of resources on a vulnerable computer. An attacker can use an IFRAME that is accessible within the same...
Invision Power Board 1.x/2.0 HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/12888/info Invision Power Board is reported prone to an HTML injection vulnerability. This issue arises due to insufficient sanitization of user-supplied data. It is reported that due to a lack of filtering of HTML tags, ...
Mozilla Firefox 1.0.6/1.0.7 IFRAME Handling Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15015/info Mozilla Firefox is prone to a remote denial of service vulnerability. The vulnerability presents itself when an affected browser handles a specially crafted IFRAME. A successful attack may result in crashing th...
Microsoft Outlook Express 5.5 DoS Device Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4584/info A denial of service issue has been reported in Microsoft Outlook Express. Reportedly, Outlook Express does not adequately handle unusually crafted HTML mail messages. Modifying the BGSOUND or IFRAME tag to conta...
phpBB 2.0.21 Privmsg.PHP HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/22001/info phpBB is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code...
MS IE 5.0/4.0.1 IFRAME Vulnerability
No description provided by source. Microsoft Internet Explorer 5.0 for Windows 2000/Windows 95/Windows 98/Windows NT 4,Internet Explorer 4.0.1 for Windows 98/Windows NT 4.0/Unix 5.0 IFRAME Vulnerability source: http://www.securityfocus.com/bid/696/info Internet Explorer 5 will allow a malicious w...
Invision Power Board 2.x - 'Signature' iFrame Security Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28466/info Invision Power Board IP.Board is prone to a security vulnerability that can aid attackers in social-engineering attacks. Attacker-supplied script code could exploit vulnerabilities in the user's browser or give...
Opera Web Browser 7 IFRAME Zone Restriction Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8887/info A flaw in the Opera web browsers security model has been discovered that could allow an attacker to access a users filesystem within the Local Zone. The problem occurs when handling malformed HTML iframes which...
Internet Explorer 9 Memory Corruption Crash PoC
No description provided by source. ?php / Internet Explorer 9 Memory Corruption PoC Exploit Successfully executed with IE9 version 9.0.8112.16421 Discovered by Jean Pascal Pereira [email protected] / settimelimit0; iniset'memorylimit', '300M'; if!fileexistsjunk.htm $string = span id='; for$i = 0;...
Winamp <= 5.12 - (.pls) Remote Buffer Overflow Exploit (0Day)
No description provided by source. / Winamp 5.12 Remote Buffer Overflow Universal Exploit Zero-Day Bug discovered & exploit coded by ATmaCA Web: http://www.spyinstructors.com && http://www.atmacasoft.com E-Mail: [email protected] Credit to Kozan / / Tested with : Winamp 5.12 on Win XP Pro Sp2 / ...
PHPLinks 2.1.2 Add Site HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6632/info phpLinks is prone to HTML injection. phpLinks does not sufficiently sanitized HTML and script code supplied via form fields before displaying this data to administrative users. This issue exists in the 'add.php'...
Microsoft Internet Explorer 5 Shell: IFrame Cross-Zone Scripting Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/9628/info It has been alleged that Microsoft Internet Explorer is prone to a weakness that may potentially allow for the execution of hostile script code in the context of the My Computer Zone. This issue is related to ho...
mIRC 6.1 "IRC" Protocol Remote Buffer Overflow Exploit
No description provided by source. / remote mirc 6.11 exploit by blasty TESTED ON: Windows XP No SP, Ducth Build: 2600.xpclient.010817-1148 A few days ago, I saw a mIRC advisory on packetstorm 1 and was surprised nobody had written an exploit yet. So I decided to start writing one. Since this was...
viart shop 4.0.5 - Multiple Vulnerabilities
No description provided by source. Title: ViArt SHOP multiple vulnerabilities Date: 18.11.2010 Author: Ariko-Security Software Link: http://www.viart.com Version: 4.0.5 ============ Ariko-Security - Advisory 2/11/2010 ============= ViArt SHOP multiple vulnerabilities Vendor's Description of...
Mozilla Firefox 2.0.0.12 IFrame Recursion Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27812/info Mozilla Firefox is prone to a remote denial-of-service vulnerability because of the way the browser handles IFrames. Attackers can exploit this issue to make the browser unresponsive and cause denial-of-service...
JavaScriptCore.dll Stack Exhaustion
No description provided by source. html --------------------- Crash Report Problem Event Name: APPCRASH Application Name: Safari.exe Application Version: 5.31.22.7 Application Timestamp: 4b8f94fa Fault Module Name: JavaScriptCore.dll Fault Module Version: 5.31.22.5 Fault Module Timestamp: 4b8cb88...
MS IE 4/5/5.5/5.0.1 external.NavigateAndFind() Cross-Frame Vulnerability
No description provided by source. Microsoft Internet Explorer 4.0 for WfW/Windows 3.1/Windows 95/Windows NT 3/Windows NT 4,Internet Explorer 5.0 for Windows 2000/Windows 95/Windows 98/Windows NT 4,Internet Explorer 5.5,Internet Explorer 5.0.1,Internet Explorer for Unix 5.0 external.NavigateAndFi...