Lucene search
K

248 matches found

Positive Technologies
Positive Technologies
added 2011/01/31 12:0 a.m.5 views

PT-2011-2085 · Microsoft · Windows Xp +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 through SP2 Microsoft Windows Server 2008 versions Gold through R2 SP1 Microsoft Windows 7 versions Gold through SP1...

6.1CVSS5.8AI score0.46819EPSS
Exploits1References18
The Hacker News
The Hacker News
added 2011/01/30 10:5 a.m.7 views

Zero day vulnerability begin in Windows MHTML renderer !

Microsoft has aloof appear aegis advising 2501696 acknowledging a fresh aught day blemish in all accepted versions of Windows except Server Core. The blemish appears to acquiesce maliciously crafted web pages to assassinate cipher in any "zone" behindhand of which area is specified. Any...

6.6AI score
Exploits0
0day.today
0day.today
added 2011/01/30 12:0 a.m.27 views

Microsoft Internet Explorer MHTML Protocol Handler XSS

Exploit for windows platform in category local exploits Ph4nt0m Webzine 0x05 http://secinn.appspot.com/pstzine Was finally released yesterday, There are two articles about the browser security0x05 and 0x06.If the combination of both, we can complete a lot of interesting attacks... 1.Cross Site...

6.8AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2011/01/30 12:0 a.m.12 views

Microsoft Internet Explorer MHTML Content Blocks Information Disclosure (CVE-2011-0096; CVE-2011-1894)

MHTML MIME Encapsulation of Aggregate HTML is an Internet standard that defines the MIME structure that is used to wrap HTML content. An information disclosure vulnerability has been reported in Microsoft Windows MHTML protocol. The vulnerability is due to the way MHTML interprets MIME-formatted...

4.3CVSS5.6AI score0.46819EPSS
Exploits2
exploitpack
exploitpack
added 2011/01/29 12:0 a.m.11 views

Microsoft Internet Explorer - MHTML Protocol Handler Cross-Site Scripting

Microsoft Internet Explorer - MHTML Protocol Handler Cross-Site Scripting Hacking with mhtml protocol handler Author: www.80vul.com Email:5up3rh3igmail.com Release Date: 2011/1/15 References: http://www.80vul.com/mhtml/Hacking%20with%20mhtml%20protocol%20handler.txt Ph4nt0m Webzine 0x05...

Exploits0
Exploit DB
Exploit DB
added 2011/01/29 12:0 a.m.55 views

Microsoft Internet Explorer - MHTML Protocol Handler Cross-Site Scripting

Hacking with mhtml protocol handler Author: www.80vul.com Email:5up3rh3igmail.com Release Date: 2011/1/15 References: http://www.80vul.com/mhtml/Hacking%20with%20mhtml%20protocol%20handler.txt Ph4nt0m Webzine 0x05 http://secinn.appspot.com/pstzine Was finally released yesterday, There are two...

7.4AI score
Exploits0
ThreatPost
ThreatPost
added 2011/01/28 6:46 p.m.16 views

Microsoft Warns of MHTML Bug in Windows

Microsoft is warning its users about a dangerous flaw in the way that Windows handles certain MHTML operations, which could allow an attacker to run code on vulnerable machines. The bug affects all of the current versions of Windows, from XP up through Windows 7 and Windows Server 2008. Microsoft...

6.3AI score
Exploits0References2
CERT
CERT
added 2011/01/28 12:0 a.m.48 views

Microsoft Windows MHTML script injection vulnerability

Overview Microsoft Windows contains an script injection vulnerability in the MHTML protocol handler, which may allow an attacker to execute arbitrary script within the context of another website domain. Description Microsoft Windows contains a script injection vulnerability caused by the way MHTM...

6.1CVSS5.8AI score0.46819EPSS
Exploits1References4
Packet Storm
Packet Storm
added 2011/01/28 12:0 a.m.25 views

Microsoft Internet Explorer MHTML Cross Site Scripting

Hacking with mhtml protocol handler Author: www.80vul.com Email:5up3rh3igmail.com Release Date: 2011/1/15 References: http://www.80vul.com/mhtml/Hacking%20with%20mhtml%20protocol%20handler.txt Ph4nt0m Webzine 0x05 http://secinn.appspot.com/pstzine Was finally released yesterday, There are two...

7.4AI score
Exploits0
CISA
CISA
added 2011/01/28 12:0 a.m.11 views

Microsoft Releases Security Advisory 2501696

Microsoft has released Microsoft security advisory 2501696 indicating that it is investigating public reports of a vulnerability affecting Windows. This vulnerability is due to the way MHTML interprets MIME-formatted requests for content blocks within a document. Exploitation of this vulnerabilit...

6.3AI score
Exploits0References3
myhack58
myhack58
added 2011/01/21 12:0 a.m.14 views

GOOGLE BOOK the MHTML Protocol injection-XSS vulnerability-vulnerability warning-the black bar safety net

Brief description: GOOGLE BOOK search output gaps, by the MHTML Protocol injection script code to run, resulting in aXSSvulnerabilities. Non-original, forwarded from the white hat group system32 total. Detailed description: Vulnerability to prove: mhtml:http://www. google. com/books?...

7.6AI score
Exploits0
OpenVAS
OpenVAS
added 2011/01/14 12:0 a.m.26 views

Microsoft Outlook Express/Windows Mail MHTML URI Handler Information Disclosure Vulnerability (929123)

This host is missing a critical security update according to Microsoft Bulletin MS07-034. OpenVAS Vulnerability Test $Id: gbms07-034.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft Outlook Express/Windows Mail MHTML URI Handler Information Disclosure Vulnerability 929123 Authors: Madhuri D...

9.3CVSS6.3AI score0.4031EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2011/01/14 12:0 a.m.35 views

Microsoft Outlook Express/Windows Mail MHTML URI Handler Information Disclosure Vulnerability (929123)

This host is missing a critical security update according to Microsoft Bulletin MS07-034. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5AI score0.4031EPSS
Exploits4References4
Check Point Advisories
Check Point Advisories
added 2010/02/14 12:0 a.m.3 views

Microsoft Internet Explorer MHTML URI Buffer Overflow (CVE-2006-2766)

There exists a buffer overflow vulnerability in the Microsoft Internet Explorer product. The flaw is caused by an improper check of the MHTML URI string. An attacker may exploit this vulnerability to cause a denial of service condition. A code execution attack is not possible as a stack integrity...

2.6CVSS7.1AI score0.47919EPSS
Exploits1
securityvulns
securityvulns
added 2008/11/10 12:0 a.m.39 views

Microsoft Windows Explorer buffer overflow

Buffer overflow during right-click on .url file with oversized mhtml://mid: URL. Vulnerability can be used for hidden malware installation...

2.5AI score
Exploits0References3
OpenVAS
OpenVAS
added 2008/08/19 12:0 a.m.33 views

Security Update for Outlook Express (951066)

This host is missing a critical security update according to Microsoft Bulletin MS08-048. OpenVAS Vulnerability Test $Id: secpodms08-048900031.nasl 5863 2017-04-05 07:38:11Z antu123 $ Description: Security Update for Outlook Express 951066 Authors: Chandan S Copyright: Copyright C 2008 SecPod,...

7.1CVSS0.2663EPSS
Exploits1References1
seebug.org
seebug.org
added 2008/08/15 12:0 a.m.35 views

Microsoft IE MHTML协议处理器跨域信息泄露漏洞(MS08-048)

BUGTRAQ ID: 30585 CVECAN ID: CVE-2008-1448 Internet Explorer是微软操作系统中默认捆绑的WEB浏览器。 IE的MHTML协议处理器没有正确地解释MHTML URI重新定向。如果以UNC的形式指定了URI的话,则没有正确的应用安全策略: \MACHINENAMEORIP\PATHTORESOURCE 在这种情况下当远程站点试图访问本地资源时,Internet Explorer会无法强制区提升限制;在浏览远程站点的时候Internet Explorer会无法应用正确地安全区权限,允许将属于较小权限区的站点处理为更高权限的区。...

7.1CVSS0.6AI score0.2663EPSS
Exploits1
securityvulns
securityvulns
added 2008/08/14 12:0 a.m.31 views

Microsoft Internet Explorer multiple security vulnerabilities

Multiple memory corruptions, MHTML crossite scripting...

9.3CVSS1.3AI score0.35222EPSS
Exploits7References5
securityvulns
securityvulns
added 2008/08/14 12:0 a.m.81 views

CORE-2008-0103: Internet Explorer Zone Elevation Restrictions Bypass and Security Zone Restrictions Bypass

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Internet Explorer Zone Elevation Restrictions Bypass and Security Zone Restrictions Bypass Advisory Information Title: Internet Explorer Zone Elevation Restrictions...

7.1CVSS5.7AI score0.2663EPSS
Exploits1
Prion
Prion
added 2008/08/13 12:41 a.m.30 views

Information disclosure

The MHTML protocol handler in a component of Microsoft Outlook Express 5.5 SP2 and 6 through SP1, and Windows Mail, does not assign the correct Internet Explorer Security Zone to UNC share pathnames, which allows remote attackers to bypass intended access restrictions and read arbitrary files via...

7.1CVSS6.5AI score0.2663EPSS
Exploits1References11Affected Software1
Rows per page
Query Builder