Opera Web Browser 7.x - URI Handler Directory Traversal

source: https://www.securityfocus.com/bid/9021/info It has been reported that Opera is vulnerable to a directory traversal issue that may allow an attacker to access sensitive information. The problem presents itself due to insufficient sanitization of user-supplied data through the 'Opera:' URI...

Netscape/Mozilla: Exploitable heap corruption via jar: URI handler.

The following is the text of an advisory with a couple of typos fixed that was sent to Netscape in early July. -rw-r--r-- 1 root root 3210 Jul 8 17:07 jar-writeup This was one a several vulnerabilities reported in Netscape/Mozilla over that period. Others included the previously posted zero-width...

Microsoft Internet Explorer 6 - URI Handler Restriction Circumvention

Microsoft Internet Explorer 6 - URI Handler Restriction Circumvention source: https://www.securityfocus.com/bid/5730/info Microsoft Windows Internet Explorer 6.0 SP1 introduced restrictions for certain URI handlers such as file:// and res://. It has been demonstrated in the past that these URI...

Microsoft Internet Explorer 6 - URI Handler Restriction Circumvention

source: https://www.securityfocus.com/bid/5730/info Microsoft Windows Internet Explorer 6.0 SP1 introduced restrictions for certain URI handlers such as file:// and res://. It has been demonstrated in the past that these URI handlers could be abused and incorporated into different types of attack...

Microsoft Windows XP - HCP URI Handler Abuse

Microsoft Windows XP - HCP URI Handler Abuse source: https://www.securityfocus.com/bid/5478/info Microsoft Internet Explorer on Windows XP comes equipped with a protocol handler for the 'Help and Support Center' application. The protocol handler may be specified in links, and when such a link is...

Microsoft Windows XP - HCP URI Handler Abuse

source: https://www.securityfocus.com/bid/5478/info Microsoft Internet Explorer on Windows XP comes equipped with a protocol handler for the 'Help and Support Center' application. The protocol handler may be specified in links, and when such a link is submitted by the browser, the Help and Contro...

Yahoo! Messenger contains a buffer overflow in the URI handler

Overview Yahoo! Messenger is an instant messaging client. A remotely exploitable vulnerability has been reported in the URI handler of Yahoo! Messenger. Description A remotely exploitable buffer overflow exists in the URI handler of Yahoo! Messenger, versions 5,0,0,1064 and prior, that may permit...

Yahoo! Messenger "addview" function allows for the automatic execution of malicious script contained in web pages

Overview Yahoo! Messenger is an instant messaging client. When installed, Yahoo! Messenger enables a URI handler ymsgr :parameter. The addview function of this handler can be used to execute arbitrary script/html on the local system. Description The addview feature of Yahoo! Messenger is used to...

Yahoo! Messenger 5.0 - Call Center Buffer Overflow

// source: https://www.securityfocus.com/bid/4837/info Yahoo! Messenger configures the 'ymsgr:' URI handler when it is installed. The handler invokes YPAGER.EXE with the supplied parameters. YPAGER.EXE accepts the 'call' argument; it is used for starting the 'Call Center' feature. There is a stac...

AOL Instant Messenger contains buffer overflows in parsing of AIM URI handler requests

Overview AOL Instant Messenger AIM is an application that allows one peer to communicate with another. A buffer overflow vulnerability exists that can manipulate the configuration of the victim's client. Description AIM installs a URI handler that permits the use of the "aim:" protocol on the...