2 matches found
CVE-2007-3150
CVE-2007-3150 affects Google Desktop. The connected sources describe a user-assisted remote code execution via a man-in-the-middle attack that injects JavaScript, a Google search IFRAME, and a META HTTP-EQUIV="refresh" targeting a local executable. When the compromised link is clicked, Google Des...
CVE-2007-1085
The CVE-2007-1085 issue affects Google Desktop and is described in connected docs as a cross-site scripting flaw in the Google Desktop Advanced Search Internal Web Server. It arises because the output for the 'under' keyword is not properly encoded, enabling an attacker to leverage a Google.com X...