CVE-2025-8029 javascript: URLs executed on object and embed tags

Thunderbird executed javascript: URLs when used in object and embed tags. This vulnerability was fixed in Firefox 141, Firefox ESR 128.13, Firefox ESR 140.1, Thunderbird 141, Thunderbird 128.13, and Thunderbird 140.1...

MS Internet Explorer Object Tag Exploit (MS03-020)

Exploit for unknown platform in category remote exploits ================================================== MS Internet Explorer Object Tag Exploit MS03-020 ================================================== !/usr/bin/perl Proof of concept exploit on IE 5.x - 6.x by Alumni IE-Object longtype...

MS Internet Explorer Object Tag Exploit (MS03-020)

No description provided by source. !/usr/bin/perl Proof of concept exploit on IE 5.x - 6.x by Alumni IE-Object longtype dynamic call oferflow url://$shellcode'/'x48jmp %ptrsh the flaw actually exists in URLMON.DLL when converting backslashes to wide char, this can be seen on stack dump near...

CVE-2003-0532

Internet Explorer 5.01 SP3 through 6.0 SP1 does not properly determine object types that are returned by web servers, which could allow remote attackers to execute arbitrary code via an object tag with a data parameter to a malicious file hosted on a server that returns an unsafe Content-Type, ak...