dealgates.txt

Dealgates.com Homepage: http://www.dealgates.com Affected files: Input boxes when registering new account Search box ------------------------------------- XSS vuln with cookie disclosure when registering a new account. To bypass the adding backslashes to ; and ", we use the long UTF-8 unicode of ...

b3ta.txt

B3ta.com Homepage: http://www.b3ta.com Affected files: Input boxes of your profile XSS vuln with cookie disclosure via Profile: box. Data isn't correctly sanatized before being generated. We can bypass the filters of the site one way by using img tags and converting our javascript to UTF-8 unicod...

CVE-2006-3086

Stack-based buffer overflow in the HrShellOpenWithMonikerDisplayName function in Microsoft Hyperlink Object Library hlink.dll allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long hyperlink, as demonstrated using an Excel worksheet with a long...

Microsoft Excel Unicode Local Overflow Exploit PoC

Exploit for unknown platform in category dos / poc ================================================== Microsoft Excel Unicode Local Overflow Exploit PoC ================================================== excelsexywarez.pl excel unicode overflow poc by kcope in 2006 thanks to revoguard and alex us...

Microsoft Excel - Unicode Local Overflow (PoC)

Microsoft Excel - Unicode Local Overflow PoC excelsexywarez.pl excel unicode overflow poc by kcope in 2006 thanks to revoguard and alex use Spreadsheet::WriteExcel; my $workbook = Spreadsheet::WriteExcel-new"FUCK.xls"; $worksheet = $workbook-addworksheet; $format = $workbook-addformat;...

Microsoft Excel - Unicode Local Overflow (PoC)

excelsexywarez.pl excel unicode overflow poc by kcope in 2006 thanks to revoguard and alex use Spreadsheet::WriteExcel; my $workbook = Spreadsheet::WriteExcel-new"FUCK.xls"; $worksheet = $workbook-addworksheet; $format = $workbook-addformat; $format-setbold; $format-setcolor'red';...

Heap overflow

Heap-based buffer overflow in Microsoft Internet Explorer 5.01 SP4 and 6 SP1 and earlier allows remote attackers to execute arbitrary code via crafted UTF-8 encoded HTML that results in size discrepancies during conversion to Unicode, aka "HTML Decoding Memory Corruption Vulnerability."...

CVE-2006-2382

Heap-based buffer overflow in Microsoft Internet Explorer 5.01 SP4 and 6 SP1 and earlier allows remote attackers to execute arbitrary code via crafted UTF-8 encoded HTML that results in size discrepancies during conversion to Unicode, aka "HTML Decoding Memory Corruption Vulnerability."...

Microsoft Internet Explorer UTF-8 Decoding Heap Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. Successful exploitation requires that the target user browse to a malicious web page. Exploitaton does not require JavaScript, Java or ActiveX to be enabled. The specif...

DEBIAN-CVE-2006-2193

Buffer overflow in the t2pwritepdfstring function in tiff2pdf in libtiff 3.8.2 and earlier allows attackers to cause a denial of service crash and possibly execute arbitrary code via a TIFF file with a DocumentName tag that contains UTF-8 characters, which triggers the overflow when a character i...

Cross site scripting

Mozilla Firefox and Thunderbird before 1.5.0.4 strip the Unicode Byte-order-Mark BOM from a UTF-8 page before the page is passed to the parser, which allows remote attackers to conduct cross-site scripting XSS attacks via a BOM sequence in the middle of a dangerous tag such as SCRIPT...

CVE-2006-2783

Mozilla Firefox and Thunderbird before 1.5.0.4 strip the Unicode Byte-order-Mark BOM from a UTF-8 page before the page is passed to the parser, which allows remote attackers to conduct cross-site scripting XSS attacks via a BOM sequence in the middle of a dangerous tag such as SCRIPT...

CVE-2006-2783

Mozilla Firefox and Thunderbird before 1.5.0.4 strip the Unicode Byte-order-Mark BOM from a UTF-8 page before the page is passed to the parser, which allows remote attackers to conduct cross-site scripting XSS attacks via a BOM sequence in the middle of a dangerous tag such as SCRIPT...

DEBIAN-CVE-2006-2783

Mozilla Firefox and Thunderbird before 1.5.0.4 strip the Unicode Byte-order-Mark BOM from a UTF-8 page before the page is passed to the parser, which allows remote attackers to conduct cross-site scripting XSS attacks via a BOM sequence in the middle of a dangerous tag such as SCRIPT...

CVE-2006-2783

Mozilla Firefox and Thunderbird before 1.5.0.4 strip the Unicode Byte-order-Mark BOM from a UTF-8 page before the page is passed to the parser, which allows remote attackers to conduct cross-site scripting XSS attacks via a BOM sequence in the middle of a dangerous tag such as SCRIPT...

CVE-2006-2783

Technical details for CVE-2006-2783 are not publicly provided in the supplied documents. Monitor for updates.

[SA20376] Firefox Multiple Vulnerabilities

---------------------------------------------------------------------- Want to join the Secunia Security Team? Secunia offers a position as a security specialist, where your daily work involves reverse engineering of software and exploit code, auditing of source code, and analysis of vulnerabilit...

Web site XSS using BOM on UTF-8 pages — Mozilla

Masatoshi Kimura reports that the Unicode Byte-order-Mark BOM is stripped from UTF-8 pages during the conversion to Unicode before the parser sees the web page. As a result the parser will see and process script tags that web input sanitizers may miss because they appear as "scrBOMipt" or similar...

ASP database plug horse small conference-vulnerability warning-the black bar safety net

lake2 （ http://lake2.0x54.org ） With the development of technology, ASP database plug horse also is not what fresh stuff, believe you played this. Oh, and that you have not met insert the asp code is spaces apart case? i.e. insertion of each of the characters between the There are spaces for? Now...

MS05-017 Microsoft Message Queueing Service Path Overflow

This module exploits a stack buffer overflow in the RPC interface to the Microsoft Message Queueing service. The offset to the return address changes based on the length of the system hostname, so this must be provided via the 'HNAME' option. Much thanks to snort.org and Jean-Baptiste Marchand's...