CVE-2020-1012 WinINet API Elevation of Privilege Vulnerability

...

CVE-2020-1012

CVE-2020-1012 is a Windows vulnerability tied to the WinINet API (listed in KB articles) with Elevation of Privilege impact. Publicly available connected docs confirm the affected component as WinINet API and indicate a security update is included in September 2020 rollups (e.g., KB4577015 and re...

KLA11954 Multiple vulnerabilities in Microsoft Browsers

Multiple vulnerabilities were found in Microsoft browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Scripting Engine can be exploited remotely to execute...

Internet Explorer WinINet credential reflection vulnerability

Added: 05/04/2009 CVE: CVE-2009-0550 BID: 34439 OSVDB: 53619 Background The Windows Internet WinINet application programming interface API provides applications with an implementation of standard protocols such as FTP and HTTP. Problem An NTLM credential reflection vulnerability allows a remote w...

A Cookie Plugin for NBSI3-vulnerability warning-the black bar safety net

Information source: http://www.neeao.com Author: superhei Oh because there is no nbsi code, had to use such means, the principle of reference to the Man-in-the-middle-attacks In Proxy of This‘plug-in’ is through the proxy to the cookie‘injected’into it. Code: Use the run\usr\binperl proxytest1.pl...