99 matches found
DEBIAN-CVE-2007-0451
Apache SpamAssassin before 3.1.8 allows remote attackers to cause a denial of service via long URLs in malformed HTML, which triggers "massive memory usage."...
SpamAssassin < 3.1.8 Malformed HTML Long URI DoS
Binary data 3918.prm...
msie6-npd.txt
Crash Denial of Service + Where: From remote + Tested Operating System: Windows XP SP2 FULL PATCHED Korean Language Windows 2000 Advanced Server Korean Language + Tested Software: Microsoft Internet Explorer Ver.6.0.2800.1106;SP1 Windows 2000 Advanced Server Microsoft Internet Explorer...
Cross Site Scripting Vulnerability in Zoho Virtual Office
Hello, We have discovered a vunerability in Zoho Virtual Office. Malformed HTML message could lead to XSS Attack. It can cause a cookie theft leading to session hijacking. PoC: Simply creating HTML message including Javascript code could lead the browser's frame into evil script on attacker's...
CVE-2005-4717
Microsoft Internet Explorer 6.0 on Windows NT 4.0 SP6a, Windows 2000 SP4, Windows XP SP1, Windows XP SP2, and Windows Server 2003 SP1 allows remote attackers to cause a denial of service client crash via a certain combination of a malformed HTML file and a CSS file that triggers a null dereferenc...
Gaim: Multiple Denial of Service issues
Background Gaim is a full featured instant messaging client which handles a variety of instant messaging protocols. Description Specially crafted SNAC packets sent by other instant-messaging users can cause Gaim to loop endlessly CAN-2005-0472. Malformed HTML code could lead to invalid memory...
CVE-2005-0208
The HTML parsing functions in Gaim before 1.1.4 allow remote attackers to cause a denial of service application crash via malformed HTML that causes "an invalid memory access," a different vulnerability than CVE-2005-0473...
Gaim vulnerable to DoS via specially crafted HTML
Overview Gaim contains a flaw in HTML processing that may result in an invalid memory access and denial of service condition. Description From the Gaim project:Gaim is a multi-protocol instant messaging IM client for Linux, BSD, MacOS X, and Windows. It is compatible with AIM and ICQ Oscar...
Gaim < 1.1.4 Remote DoS
Binary data 2654.prm...
CVE-2005-0473
The HTML parsing functions in Gaim before 1.1.3 allow remote attackers to cause a denial of service application crash via malformed HTML that causes "an invalid memory access," a different vulnerability than CVE-2005-0208...
gaim -- remote DoS on receiving malformed HTML
The GAIM team reports: Receiving malformed HTML can result in an invalid memory access causing Gaim to crash...
Lynx Malformed HTML Tags DoS
Binary data 2581.prm...
Mac OS X Multiple Vulnerabilities (Security Update 2004-06-07)
The remote host is missing Security Update 2004-06-07. This security update includes fixes for the following components : DiskImages LaunchServices Safari Terminal This update fixes a security problem which may allow an attacker to execute arbitrary commands the on the remote host by abusing of a...
Opera 7.117.20 HREF - Malformed Server Name Heap Corruption
Opera 7.117.20 HREF - Malformed Server Name Heap Corruption source: https://www.securityfocus.com/bid/8853/info A vulnerability has been discovered in the Opera web browser that could lead to remote code execution. The problem is said to trigger when handling malformed HTML HREF values and may...
Microsoft Windows shlwapi.dll Malformed HTML Tag Handling Null Pointer DoS
The remote host is running a version of the shlwapi.dll which crashes when processing a malformed HTML form. An attacker may use this flaw to prevent the users of this host from working properly. To exploit this flaw, an attacker would need to send a malformed HTML file to the remote user, either...
KDE Konqueror 3.0.3 - Malformed HTML Page Denial of Service
KDE Konqueror 3.0.3 - Malformed HTML Page Denial of Service source: https://www.securityfocus.com/bid/7486/info KDE Konqueror has been reported prone to a denial of service vulnerability when rendering a HTML page that contains malformed data. Although unconfirmed, code execution may be possible...
KDE Konqueror 3.0.3 - Malformed HTML Page Denial of Service
source: https://www.securityfocus.com/bid/7486/info KDE Konqueror has been reported prone to a denial of service vulnerability when rendering a HTML page that contains malformed data. Although unconfirmed, code execution may be possible. The precise technical details of this vulnerability are...
Microsoft Shlwapi.dll 6.0.2800.1106 - Malformed HTML Form Tag Denial of Service
Microsoft Shlwapi.dll 6.0.2800.1106 - Malformed HTML Form Tag Denial of Service source: https://www.securityfocus.com/bid/7402/info The 'shlwapi.dll' dynamic link library causes a calling application to fail when it attempts to render certain malformed HTML tags. This appears to be due to an...
Microsoft 'Shlwapi.dll' 6.0.2800.1106 - Malformed HTML Form Tag Denial of Service
source: https://www.securityfocus.com/bid/7402/info The 'shlwapi.dll' dynamic link library causes a calling application to fail when it attempts to render certain malformed HTML tags. This appears to be due to an attempt to perform a string comparison where one of the strings is a null pointer. I...