248 matches found
CVE-2014-1747
Removed by vendor...
CVE-2013-5406
Multiple cross-site scripting XSS vulnerabilities in IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters, leading to improper interaction with the Windows MHTML protocol handler...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters, leading to improper interaction with the Windows MHTML protocol handler...
CVE-2013-5406
Multiple cross-site scripting XSS vulnerabilities in IBM Sterling B2B Integrator 5.2 and Sterling File Gateway 2.2 allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters, leading to improper interaction with the Windows MHTML protocol handler...
CVE-2012-5762
Cross-site scripting XSS vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject arbitrary web script or HTML via vectors involving the MHTML protocol...
Cross site scripting
Cross-site scripting XSS vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject arbitrary web script or HTML via vectors involving the MHTML protocol...
CVE-2012-5762
CVE-2012-5762 affects IBM Netezza WebAdmin (versions 6.0.5, 6.0.8 and 7.0 before P2). The vulnerability is an XSS allowing remote authenticated users to inject arbitrary script/HTML via MHTML protocol vectors. IBM’s bulletin for this family notes multiple issues and lists CVE-2012-5762 among them...
CVE-2012-5762
Cross-site scripting XSS vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject arbitrary web script or HTML via vectors involving the MHTML protocol...
Design/Logic Flaw
Untrusted search path vulnerability in QtWeb Browser 3.3 build 043 allows local users to gain privileges via a Trojan horse wintab32.dll file in the current working directory, as demonstrated by a directory that contains a .html, .htm, or .mhtml file. NOTE: some of these details are obtained from...
MHTML Mime-Formatted Request Vulnerability
No description provided by source. MHTML Mime-Formatted Request Vulnerability Again Author: www.80vul.com Email:5up3rh3igmail.com Release Date: 2011/09/23 Release: http://www.80vul.com/mhtml/mhtml-again.txt Overview: After MS11-057,I tested and found "MHTML Mime-Formatted Request Vulnerability"...
Microsoft Internet Explorer multiple security vulnerabilities
mhtml handler cross application scripting, VML processor memory corruption, multiple internet explorer memory corruptions, information leakage...
CVE-2011-1894
The MHTML protocol handler in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle a MIME format in a request for embedded content in an HTML document, which allows...
Cross site scripting
The MHTML protocol handler in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle a MIME format in a request for embedded content in an HTML document, which allows...
CVE-2011-1894
The CVE-2011-1894 issue affects the MHTML protocol handler used by Microsoft Windows components (XP SP2/SP3, Server 2003 SP2, Vista SP1/SP2, Server 2008 Gold/R2, Windows 7 SP1). The vulnerability arises from improper handling of a MIME format in requests for embedded content within an HTML docume...
CVE-2011-1894
The MHTML protocol handler in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle a MIME format in a request for embedded content in an HTML document, which allows...
Microsoft Windows MHTML Mime-格式化请求信息泄露漏洞
Bugtraq ID: 48205 CVE ID:CVE-2011-1894 Microsoft Windows是一款流行的操作系统。 MHTML聚合HTML MIME封装协议处理器解析MIME格式化请求存在错误,攻击者可以利用漏洞进行跨站脚本攻击,可获得敏感信息或劫持用户会话 Microsoft Windows XP Professional SP3 Microsoft Windows XP Professional SP2 Microsoft Windows XP Professional SP1 Microsoft Windows XP Professional Microsoft...
PT-2011-3455 · Microsoft · Windows Server 2003 +5
Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 through SP2 Microsoft Windows Server 2008 versions Gold through R2 SP1 Microsoft Windows 7 versions Gold through SP1...
Windows MHTML Information Disclosure Vulnerability (2544893)
This host is missing an important security update according to Microsoft Bulletin MS11-037. OpenVAS Vulnerability Test $Id: secpodms11-037.nasl 5362 2017-02-20 12:46:39Z cfi $ Windows MHTML Information Disclosure Vulnerability 2544893 Authors: Antu Sanadi Updated By: Sooraj KS on 2011-11-09 -...
Windows MHTML Information Disclosure Vulnerability (2544893)
This host is missing an important security update according to Microsoft Bulletin MS11-037. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
MS11-037: Vulnerability in MHTML Could Allow Information Disclosure (2544893)
A flaw exists in the way MHTML interprets MIME-formatted requests for content blocks within a document. By exploiting the flaw, an attacker could cause a victim to run malicious scripts when visiting various websites that could result in information disclosure. C Tenable Network Security, Inc...