Lucene search
K

437 matches found

Exploit DB
Exploit DB
added 2010/11/04 12:0 a.m.59 views

Microsoft Internet Explorer 6/7/8 - Memory Corruption

Internet Explorer Memory Corruption 0day Vulnerability CVE-2010-3962 Tested on Windows XP SP3 IE6 IE7 IE8 Coded by Matteo Memelli ryujin at offsec.com http://www.offensive-security.com/0day/ie-0day.txt Thx to dookie at offsec.com notes : This is a quick and dirty exploit! No DEP/ASLR bypass here...

9.3CVSS6.5AI score0.96889EPSS
Exploits14
Check Point Advisories
Check Point Advisories
added 2010/10/12 12:0 a.m.7 views

Microsoft Internet Explorer MSHTML Uninitialized Memory Corruption (MS10-071; CVE-2010-3331)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to the way Internet Explorer accesses an object that has not been initialized or has been deleted when a document in an HTML format is opened in Microsoft Word. To trigger this issue, ...

9.3CVSS7AI score0.25422EPSS
Exploits1
Exploit DB
Exploit DB
added 2010/09/27 12:0 a.m.29 views

Microsoft Internet Explorer - MSHTML Findtext Processing

/textarea function Search var textinput = document.getElementById"Abysssec"; var textRange = textinput.createTextRange; textRange.findTextunescape"%u4141",-1; textRange.selectdocument.getElementById'd'; document.body.appendChildtextinput; Abysssec...

7AI score
Exploits0
exploitpack
exploitpack
added 2010/09/27 12:0 a.m.10 views

Microsoft Internet Explorer - MSHTML Findtext Processing

Microsoft Internet Explorer - MSHTML Findtext Processing /textarea function Search var textinput = document.getElementById"Abysssec"; var textRange = textinput.createTextRange; textRange.findTextunescape"%u4141",-1; textRange.selectdocument.getElementById'd'; document.body.appendChildtextinput;...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2010/01/19 12:0 a.m.118 views

Code to mitigate IE event zero-day (CVE-2010-0249)

Here's a mitigation for the CVE-2010-0249 IE createEventObject srcElement zero-day. Quite simply, it just disables the createEventObject method by mangling its name in memory. If anyone knows an important web application that uses createEventObject, please respond to the mailing list. Use this co...

9.3CVSS0.3AI score0.91885EPSS
Exploits16
Tenable Nessus
Tenable Nessus
added 2009/06/10 12:0 a.m.45 views

MS09-023: Vulnerability in Windows Search Could Allow Information Disclosure (963093)

The remote Windows host contains a version of Windows Search that has a flaw in the way it uses MSHTML a.k.a. Trident to render HTML content that could result in information disclosure. If an attacker can trick a user on the affected host into putting a specially crafted HTML file on the system o...

4.3CVSS5.5AI score0.32546EPSS
Exploits1References2
myhack58
myhack58
added 2009/03/13 12:0 a.m.60 views

Microsoft MS09-0 0 2 vulnerability analysis report-vulnerability warning-the black bar safety net

Rising anti-virus researcher leaves ultra Internet Explorer CFunctionPointer function does not correctly handle a document object, if in a specific sequence attach and delete object, you can trigger the memory destruction. An attacker can construct a special sequence of code to trigger this memor...

0.6AI score
Exploits0
VulnCheck KEV
VulnCheck KEV
added 2008/12/11 12:0 a.m.3 views

VulnCheck KEV: CVE-2008-4844

Use-after-free vulnerability in the CRecordInstance::TransferToDestination function in mshtml.dll in Microsoft Internet Explorer 5.01, 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via DSO bindings involving 1 an XML Island, 2 XML DSOs, or 3 Tabular Data Control TDC in...

9.3CVSS6.2AI score0.66513EPSS
Exploits10References1
securityvulns
securityvulns
added 2005/01/13 12:0 a.m.67 views

US-CERT Technical Cyber Security Alert TA05-012B -- Microsoft Windows HTML Help ActiveX Contol Cross-Domain Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Technical Cyber Security Alert TA05-012B Microsoft Windows HTML Help ActiveX Contol Cross-Domain Vulnerability Original release date: January 12, 2005 Last revised: -- Source: US-CERT Systems Affected Windows 98, Me, 2000, XP, and Server 2003 Internet...

5CVSS7AI score0.44984EPSS
Exploits1
VulnCheck KEV
VulnCheck KEV
added 2004/07/30 12:0 a.m.3 views

VulnCheck KEV: CVE-2004-0549

The WebBrowser ActiveX control, or the Internet Explorer HTML rendering engine MSHTML, as used in Internet Explorer 6, allows remote attackers to execute arbitrary code in the Local Security context by using the showModalDialog method and modifying the location to execute code such as...

10CVSS6.2AI score0.61057EPSS
Exploits0References1
securityvulns
securityvulns
added 2002/02/27 12:0 a.m.93 views

Buffer overflow in mshtml.dll

Stack overflow on long filename or extension in EMBED tag...

3.3AI score
Exploits0References5Affected Software2
securityvulns
securityvulns
added 2001/01/16 12:0 a.m.25 views

Переполнение буфера в MSHTML

Определенные манипуляции с javascript приводят к переполнению буфера...

0.2AI score
Exploits0References1Affected Software1
Exploit DB
Exploit DB
added 2001/01/15 12:0 a.m.38 views

Microsoft Internet Explorer 4 / Outlook 2000/5.5 - 'MSHTML.dll' Crash

source: https://www.securityfocus.com/bid/2202/info MSHTML.DLL is the shared library for parsing HTML in Internet Explorer and related applications. It may be possible for an attacker to crash this library remotely and cause a denial of service with special Jscript code. This bug involves Jscript...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2001/01/15 12:0 a.m.14 views

Microsoft Internet Explorer 4 Outlook 20005.5 - MSHTML.dll Crash

Microsoft Internet Explorer 4 Outlook 20005.5 - MSHTML.dll Crash source: https://www.securityfocus.com/bid/2202/info MSHTML.DLL is the shared library for parsing HTML in Internet Explorer and related applications. It may be possible for an attacker to crash this library remotely and cause a denia...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2000/02/04 5:0 a.m.26 views

CVE-1999-0489

MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to paste a file name into the file upload intrinsic control, a variant of "untrusted scripted paste" as described in MS:MS98-013...

6.6AI score0.12447EPSS
Exploits0References1
Packet Storm
Packet Storm
added 1999/10/29 12:0 a.m.23 views

ie50.cross-frame.txt

Subject: IE 5.0 cross-frame vulnerabilities back again from: Francis Favorini Folks, It seems that after applying the IFRAME ExecCommand patch from MS9-042, IE 5.0 is again vulnerable to Georgi Guninski's cross-frame bugs. You can visit his page at to test. I tested this on 2 NTW 4.0 SP5 machines...

7.4AI score
Exploits0
NVD
NVD
added 1999/05/17 4:0 a.m.24 views

CVE-1999-0489

MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to paste a file name into the file upload intrinsic control, a variant of "untrusted scripted paste" as described in MS:MS98-013...

10CVSS6.6AI score0.12447EPSS
Exploits0References1
Rows per page
Query Builder