24 matches found
DSA-1966-1 horde3 - cross-site scripting
Bulletin has no description...
opera -- multiple vulnerabilities
The Opera Team reports: Scripts are able to change the addresses of framed pages that come from the same site. Due to a flaw in the way that Opera checks what frames can be changed, a site can change the address of frames on other sites inside any window that it has opened. This allows sites to...
Using Sysocmgr. exe to complete the opening 3 3 8 9 method-vulnerability warning-the black bar safety net
Presented here with Sysocmgr. exe to complete the opening 3 3 8 9 method. Suppose now that in the%systemroot%, at the same time, sysoc. inf also in%systemroot%. | sysocmgr /i:%systemroot%\sysoc.inf /u:%systemroot%\x.txt /q --- If the same path, we can also be lazy. The above command can be...
Microsoft Exchange Server SMTP服务溢出漏洞(MS05-021)
Microsoft Exchange是一款由微软开发的邮件服务程序。 Microsoft Exchange Server中存在缓冲区溢出漏洞,攻击者可能利用此漏洞在主机上执行任意指令。 起因是Exchange SMTP Server在处理特殊的扩展SMTP verb时存在缓冲区溢出。漏洞可能允许攻击者连接到Exchange服务器的SMTP端口并发送精心构造的恶意命令,这些命令可能导致拒绝服务或以SMTP服务进程的权限运行攻击者所选择的代码。 Microsoft Exchange Server 2003 SP1 Microsoft Exchange Server 2003 Microsof...