28 matches found
EUVD-2002-0077
Malware in sbrugna...
Unspecified Vulnerability in Mozilla Firefox (CNVD-2021-15047)
Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in versions of Mozilla Firefox prior to 85. An attacker could gain access to hosts on an internal network as well as services running on a user's local computer...
Mozilla Firefox 安全漏洞
Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in versions of Mozilla Firefox prior to 85. An attacker could gain access to hosts on an internal network as well as services running on a user's local computer...
CVE-2019-1414
An elevation of privilege vulnerability exists in Visual Studio Code when it exposes a debug listener to users of a local computer, aka 'Visual Studio Code Elevation of Privilege Vulnerability'...
Mixed Content: This content should also be served over HTTPS
Is the mixed content warning a security concern? This is by design,the request starting “receiver://” is invoking the protocol handler. It only happens on the local computer instead to crossing the internet. This command invokes the WebHelper.exe installed as part of Receiver to run and report th...
emlog personal blog system background there is privilege elevation vulnerability
Impact version emlog = 5.1.2 Prerequisites: need to log in the background Exploit Log in the background after a visit to admin/? action=phpinfo page, get website physical path In the database backup page to back up the database, export to a local computer, and then edit the exported . sql format ...
Microsoft Internet Explorer 7.0 - Header Handling 'res://' Information Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28667/info Microsoft Internet Explorer is prone to an information-disclosure vulnerability. An attacker can exploit this issue to obtain potentially sensitive information from the local computer. Information obtained may...
Microsoft Outlook Express 5/6 MHTML URL Handler File Rendering Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5473/info Microsoft Outlook Express introduced a URL handler called MHTML MIME Encapsulation of Aggregate HTML. This allows Internet Explorer to pass MHTML files to Outlook Express for rendering. The MHTML URL handler doe...
Internet Explorer 5/6 file:// Request Zone Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7539/info Internet Explorer is reported to be vulnerable to a zone bypass issue. Allegedly, if Internet Explorer attempts to open a web page containing numerous 'file://' requests each contained in a separate Iframe, the...
Microsoft Internet Explorer 7 - Header Handling res: Information Disclosure
Microsoft Internet Explorer 7 - Header Handling res: Information Disclosure source: https://www.securityfocus.com/bid/28667/info Microsoft Internet Explorer is prone to an information-disclosure vulnerability. An attacker can exploit this issue to obtain potentially sensitive information from the...
Yahoo Messanger crossaplication scripting
Chat sign in / sign out messages are shown with Internet Explorer allowing scripting in local computer zone...
Mysteriously replaced Windows XP user password-vulnerability warning-the black bar safety net
Windows XP startup scriptstartup scriptsis a computer in the login screen to appear before running the batch file, which functions similar to the Windows 9×and DOS automatically executed batch file, the autoexec. bat. Using this feature, you can write a batch file to re-set the user password, and...
Microsoft Internet Explorer 6 - Sysimage Protocol Handler Local File Detection
Microsoft Internet Explorer 6 - Sysimage Protocol Handler Local File Detection source: https://www.securityfocus.com/bid/11834/info Microsoft Internet Explorer is reported prone to a vulnerability that may allow a remote site to detect files on the local computer. A remote attacker can exploit th...
CVE-2003-0009
Cross-site scripting XSS vulnerability in Help and Support Center for Microsoft Windows Me allows remote attackers to execute arbitrary script in the Local Computer security context via an hcp:// URL with the malicious script in the topic parameter...
CVE-2002-0615
The Windows Media Active Playlist in Microsoft Windows Media Player 7.1 stores information in a well known location on the local file system, allowing attackers to execute HTML scripts in the Local Computer zone, aka "Media Playback Script Invocation"...
Microsoft Internet Explorer and Outlook Express MHTML rendering engine incorrectly executes script in Local Computer Zone
Overview There is an MHTML input validation vulnerability in Outlook Express that may lead to arbitrary command and code execution in the Local Computer Zone of a victim host. Description Microsoft systems use components of Microsoft Outlook Express to render MHTML MIME Encapsulation of Aggregate...
Microsoft Internet Explorer 56 - file: Request Zone Bypass
Microsoft Internet Explorer 56 - file: Request Zone Bypass source: https://www.securityfocus.com/bid/7539/info Internet Explorer is reported to be vulnerable to a zone bypass issue. Allegedly, if Internet Explorer attempts to open a web page containing numerous 'file://' requests each contained i...
CVE-2003-0009
Cross-site scripting XSS vulnerability in Help and Support Center for Microsoft Windows Me allows remote attackers to execute arbitrary script in the Local Computer security context via an hcp:// URL with the malicious script in the topic parameter...
CVE-2002-0615
The Windows Media Active Playlist in Microsoft Windows Media Player 7.1 stores information in a well known location on the local file system, allowing attackers to execute HTML scripts in the Local Computer zone, aka "Media Playback Script Invocation"...
Microsoft Internet Explorer 56 - FTP Web View Cross-Site Scripting
Microsoft Internet Explorer 56 - FTP Web View Cross-Site Scripting source: https://www.securityfocus.com/bid/4954/info A cross site scripting issue has been reported with some versions of Microsoft Internet Explorer for Windows. Under some configurations, data included within a FTP URL will be...