23 matches found
CVE-2025-31488 Plain Craft Launcher's custom homepage can use Internet Explorer to load web pages with the help of controls such as WebBrowser
Plain Craft Launcher PCL is a launcher for Minecraft. PCL allows users to use homepages provided by third parties. If controls such as WebBrowser are used in the homepage, WPF will use Internet Explorer to load the specified webpage. If the user uses a malicious homepage, the attacker can use IE...
CVE-2022-30194
Windows WebBrowser Control Remote Code Execution Vulnerability...
CVE-2022-30194
Windows WebBrowser Control Remote Code Execution Vulnerability...
Remote code execution
Windows WebBrowser Control Remote Code Execution Vulnerability...
CVE-2022-30194 Windows WebBrowser Control Remote Code Execution Vulnerability
...
CVE-2022-30194 Windows WebBrowser Control Remote Code Execution Vulnerability
...
Microsoft Windows 安全漏洞
Microsoft Windows is a suite of operating systems for use on personal devices from the U.S.-based Microsoft Corporation Microsoft. A security vulnerability exists in Microsoft Windows WebBrowser Control. The following products and versions are affected:Windows 10 Version 1809 for 32-bit...
KLA12602 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, bypass security restrictions, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A denial of...
KB5016684: Windows Server 2012 Security Update (August 2022)
The remote Windows host is missing security update 5016684. It is, therefore, affected by multiple vulnerabilities - Windows Point-to-Point Protocol PPP Denial of Service Vulnerability CVE-2022-35747, CVE-2022-35769 - Windows Point-to-Point Protocol PPP Remote Code Execution Vulnerability...
PT-2022-4172 · Microsoft · Windows Webbrowser Control +1
Name of the Vulnerable Software and Affected Versions: Windows WebBrowser Control affected versions not specified Description: The issue exists due to insufficient input validation in the Windows WebBrowser Control component of the Windows operating system. This allows a remote attacker to execut...
KB5016679: Windows 7 and Windows Server 2008 R2 Security Update (August 2022)
The remote Windows host is missing security update 5016679. It is, therefore, affected by multiple vulnerabilities - Windows Point-to-Point Protocol PPP Denial of Service Vulnerability CVE-2022-35747, CVE-2022-35769 - Windows Point-to-Point Protocol PPP Remote Code Execution Vulnerability...
KB5016627: Windows Server 2022 Security Update (August 2022)
The remote Windows host is missing security update 5016627. It is, therefore, affected by multiple vulnerabilities - Windows Point-to-Point Protocol PPP Denial of Service Vulnerability CVE-2022-35747, CVE-2022-35769 - Windows Point-to-Point Protocol PPP Remote Code Execution Vulnerability...
List of changes and fixed issues in the .NET Framework 3.5 Service Pack 1
List of changes and fixed issues in the .NET Framework 3.5 Service Pack 1 Summary This article describes the following aspects of the Microsoft .NET Framework 3.5 Service Pack 1 SP1: Hotfixes that are included in this service pack New features and functionalities Note This update also includes...
SysExporter - Grab data from list-view, tree-view, combo box, WebBrowser control, and text-box
SysExporter utility allows you to grab the data stored in standard list-views, tree-views, list boxes, combo boxes, text-boxes, and WebBrowser/HTML controls from almost any application running on your system, and export it to text, HTML or XML file. Here's some examples for data that you can expo...
Qualcomm Eudora WebBrowser Control Embedded Media Player File Vulnerability
Binary data 1286.prm...
[Full-Disclosure] Adobe SVG Viewer Local and Remote File Reading (GM#003-MC)
GreyMagic Security Advisory GM003-MC ===================================== By GreyMagic Software, Israel. 07 Oct 2003. Available in HTML format at http://security.greymagic.com/adv/gm003-mc/. Topic: Adobe SVG Viewer Local and Remote File Reading. Discovery date: 07 Sep 2003. Affected applications...
CVE-2002-1217
The CVE-2002-1217 entry describes a Cross-Frame scripting vulnerability in the WebBrowser control as used by Internet Explorer 5.5 and 6.0. The issue arises when script accesses the Document property, bypassing / domain restrictions, enabling remote attackers to execute arbitrary code, read arbit...
Internet Explorer : The D-Day
GreyMagic Security Advisory GM011-IE ===================================== By GreyMagic Software, Israel. 15 Oct 2002. Available in HTML format at http://security.greymagic.com/adv/gm011-ie/. Topic: Internet Explorer : The D-Day. Discovery date: 26 Sep 2002. Affected applications:...
IE execution of arbitrary commands without Active Scripting or ActiveX (GM#001-IE)
GreyMagic Security Advisory GM001-IE ===================================== by GreyMagic Software, Israel. 27 Feb 2002. Topic: Executing arbitrary commands without Active Scripting or ActiveX. Discovery date: 25 Feb 2002. Affected applications: ====================== Any application that hosts the...
CVE-2000-0503
The CVE-2000-0503 entry concerns the IFRAME within the WebBrowser control of Internet Explorer 5.01. The issue allows a remote attacker to violate the cross-frame security policy via the NavigateComplete2 event. The description and connected records indicate the vulnerability is tied to the WebBr...