Invision Power Board 1.x2.0 - HTML Injection

Invision Power Board 1.x2.0 - HTML Injection source: https://www.securityfocus.com/bid/12888/info Invision Power Board is reported prone to an HTML injection vulnerability. This issue arises due to insufficient sanitization of user-supplied data. It is reported that due to a lack of filtering of...

Invision Power Board 1.x/2.0 - HTML Injection

source: https://www.securityfocus.com/bid/12888/info Invision Power Board is reported prone to an HTML injection vulnerability. This issue arises due to insufficient sanitization of user-supplied data. It is reported that due to a lack of filtering of HTML tags, an attacker can inject an IFRAME...

CVE-2004-2476

Microsoft Internet Explorer 6.0 allows remote attackers to cause a denial of service infinite loop and crash via an IFRAME with "?" as the file source...

CVE-2004-1050

Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long 1 SRC or 2 NAME attributes in IFRAME, FRAME, and EMBED elements, as originally discovered using the mangleme utility, aka "the IFRAME vulnerability" or the "HTML Elements Vulnerability."...

CVE-2004-2015

Cross-site scripting XSS vulnerability in WebCT Campus Edition allows remote attackers to inject arbitrary HTML or web script via 1 iframe, 2 img, or 3 object tags...

Mozilla0.x Netscape 34 Firefox 1.0 - JavaScript IFRAME Rendering Denial of Service

Mozilla0.x Netscape 34 Firefox 1.0 - JavaScript IFRAME Rendering Denial of Service source: https://www.securityfocus.com/bid/11823/info Mozilla/Netscape and Firefox browsers are reported prone a remote denial of service vulnerability. It is reported that the affected browsers will crash as a resu...

[Full-Disclosure] Disclosure of local file content in Mozilla Firefox and Opera

Disclosure of local file content in Mozilla Firefox and Opera Note: I don't know if it could be considered really a security problem, anyway i'll try to explain my ideas. Sorry for my bad english. Author: Giovanni Delvecchio Applications affected: - Firefox 1.0 - Mozilla 1.7 - Opera 7.54 maybe al...

Mozilla0.x / Netscape 3/4 / Firefox 1.0 - JavaScript IFRAME Rendering Denial of Service

source: https://www.securityfocus.com/bid/11823/info Mozilla/Netscape and Firefox browsers are reported prone a remote denial of service vulnerability. It is reported that the affected browsers will crash as a result of a NULL pointer dereference when a JavaScript function attempts to print an...

Microsoft Internet Explorer buffer overflow

Buffer overflow in FRAME and IFRAME tags parameters...

VulnCheck KEV: CVE-2004-1050

Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long 1 SRC or 2 NAME attributes in IFRAME, FRAME, and EMBED elements, as originally discovered using the mangleme utility, aka "the IFRAME vulnerability" or the "HTML Elements Vulnerability."...

CVE-2004-1050

Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long 1 SRC or 2 NAME attributes in IFRAME, FRAME, and EMBED elements, as originally discovered using the mangleme utility, aka "the IFRAME vulnerability" or the "HTML Elements Vulnerability."...

CVE-2004-1050

CVE-2004-1050 affects Internet Explorer 6. A heap-based buffer overflow occurs when parsing long NAME or SRC attributes in IFRAME/FRAME/EMBED elements, allowing remote code execution. Exploitation typically involves loading a crafted page; CVSS notes high risk (network exploit, no user interactio...

Microsoft IE FRAME/IFRAME/EMBED Tag Overflow (Bofra Worm Detection)

The remote host seems to have been infected with the Bofra worm or one of its variants, which infects machines via an Internet Explorer IFRAME exploit. It is very likely this system has been compromised. Bofra virus detection Author: Brian Smith-Sweeney [email protected]...

Microsoft Internet Explorer does not properly interpret IFRAME elements when displaying URLs in the status bar

Overview Microsoft Internet Explorer does not properly display the location of HTML documents in the status bar. An attacker could exploit this behavior to mislead users into revealing sensitive information. Description Web browsers frequently display the Uniform Resource Locator URL in the statu...

MS Internet Explorer (IFRAME Tag) Buffer Overflow Exploit

Exploit for unknown platform in category remote exploits ========================================================= MS Internet Explorer IFRAME Tag Buffer Overflow Exploit ========================================================= BoF PoC exploit iS' ,SS" Copyright C 2003, 2004 by Berend-Jan Wever...

Microsoft Internet Explorer 6 - IFRAME Tag Buffer Overflow

Microsoft Internet Explorer 6 - IFRAME Tag Buffer Overflow BoF PoC exploit iS' ,SS" Copyright C 2003, 2004 by Berend-Jan Wever. YS, .ss ,sY" http://www.edup.tudelft.nl/bjwever "YSSP" sSS This program is free software; you can redistribute it and/or modify it under the terms of the GNU General...

MS Internet Explorer (IFRAME Tag) Buffer Overflow Exploit

No description provided by source. HTML!-- ,sSSSs, Ss, Internet Exploiter v0.1 SS" YS' 'Ss. MSIE IFRAME src=... name="..." BoF PoC exploit iS' ,SS" Copyright C 2003, 2004 by Berend-Jan Wever. YS, .ss ,sY" http://www.edup.tudelft.nl/bjwever "YSSP" sSS [email protected] This program is free...

Microsoft Internet Explorer 6 - IFRAME Tag Buffer Overflow

BoF PoC exploit iS' ,SS" Copyright C 2003, 2004 by Berend-Jan Wever. YS, .ss ,sY" http://www.edup.tudelft.nl/bjwever "YSSP" sSS This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License version 2, 1991 as published by the Free Softwa...

Opera Local File/Directory Detection (GM#009-OP)

GreyMagic Security Advisory GM009-OP ===================================== By GreyMagic Software, 17 Aug 2004. Available in HTML format at http://www.greymagic.com/security/advisories/gm009-op/. Topic: Opera Local File/Directory Detection. Discovery date: 04 Aug 2004. Affected applications:...

Opera Web Browser 7.5 - Resource Detection

Opera Web Browser 7.5 - Resource Detection source: https://www.securityfocus.com/bid/10961/info Opera Web Browser is prone to a security weakness that may permit an attacker to determine the existence of resources on a vulnerable computer. An attacker can use an IFRAME that is accessible within t...