|
Mar 20 2002
|
Microsoft Internet Explorer Can Be Crashed By Malicious 'location.replace' Javascript
|
|
Mar 18 2002
|
Microsoft Internet Explorer (IE) 6 Lets Remote Users Cause Files to Be Downloaded and Executed Without the Knowledge or Consent of the Victim
|
|
Mar 13 2002
|
(FreeBSD Issues Fix) Netscape 4.76 Browser May Execute Arbitrary Javascript Code that Could Disclose Recently Visited Web URLs
|
|
Mar 4 2002
|
Netscape Web Broswer Java Environment Lets Remote Malicious Applets Redirect Web Proxy Connections
|
|
Mar 4 2002
|
Microsoft Java Virtual Machine in Internet Explorer Lets Remote Malicious Applets Redirect Web Proxy Connections
|
|
Mar 4 2002
|
(A Workaround is Described) Re: Internet Explorer (IE) Web Browser 'innerHTML' Property Hole Lets Remote Users Execute Programs on the Browser's Host, Even With ActiveX and Active Scripting Disabled
|
|
Feb 28 2002
|
Internet Explorer (IE) Web Browser 'innerHTML' Property Hole Lets Remote Users Execute Programs on the Browser's Host, Even With ActiveX and Active Scripting Disabled
|
|
Feb 22 2002
|
Microsoft Internet Explorer Has Another Frame Domain Security Bug That Lets Remote Users View Files or Other Personal Information from a Victim's Computer By Using Malicious VBScripts
|
|
Feb 22 2002
|
(Microsoft Issues Fix) Microsoft Internet Explorer Version 6 Lets Remote Scripts Access and Send Local Files
|
|
Feb 13 2002
|
Opera Web Browser MIME Flaw Causes 'text/plain' Pages to Be Displayed as HTML and Any Embedded Scripting to Be Executed By the Browser
|
|
Feb 13 2002
|
Microsoft Internet Explorer Browser MIME Flaw Causes 'text/plain' Pages to Be Displayed as HTML and Any Embedded Scripting to Be Executed By the Browser
|
|
Feb 13 2002
|
(Additional Details Are Provided) Re: Microsoft Internet Explorer (IE) 'Content-Type' Processing Hole Lets Remote Users Open Applications on Another User's Computer
|
|
Feb 12 2002
|
Microsoft Internet Explorer (IE) HTML Directive Buffer Overflow Lets Remote Users Cause Arbitrary Code to Be Executed on Another User's Computer
|
|
Feb 12 2002
|
Microsoft Internet Explorer (IE) 'Content-Type' Processing Hole Lets Remote Users Open Applications on Another User's Computer
|
|
Feb 12 2002
|
Microsoft Internet Explorer (IE) Web Browser Has New Frame Domain Verification Bug That Lets Remote Users Obtain Files from Another User's Local File System
|
|
Feb 12 2002
|
(Microsoft Issues New Fix) Re: Microsoft Internet Explorer (IE 6) Browser May Automatically and Silently Execute Arbitrary Code from a Remote Web Site When the User Views a Web Page or HTML-based E-mail
|
|
Feb 12 2002
|
(Vendor Issues Fix) Re: Microsoft Internet Explorer Popup Object Tag Flaw Lets Remote Users Execute Programs on the Browser's Host
|
|
Feb 12 2002
|
(Vendor Issues Fix) Re: Microsoft Internet Explorer GetObject() Active Scripting Bug Lets Remote Code Access Files on the PC
|
|
Feb 7 2002
|
Opera Web Browser Allows Cross-site Scripting Attacks Via Non-HTTP Servers
|
|
Feb 7 2002
|
Microsoft Internet Explorer Web Browser Allows Cross-site Scripting Attacks Via Non-HTTP Servers
|
|
Feb 6 2002
|
(HP Issues Fix) Netscape Web Browser Cookie Processing Bug May Let Remote Web Sites Steal a User's Cookies for Any Domain
|
|
Jan 22 2002
|
Microsoft Internet Explorer for Macintosh OS Executes Remotely Supplied Commands in AppleScripts
|
|
Jan 22 2002
|
Netscape Web Browser Cookie Processing Bug May Let Remote Web Sites Steal a User's Cookies for Any Domain
|
|
Jan 22 2002
|
Mozilla Web Browser Cookie Processing Bug May Let Remote Web Sites Steal a User's Cookies for Any Domain
|
|
Jan 16 2002
|
(A User Reports and Additional Exploit Method) Re: Microsoft Internet Explorer Popup Object Tag Flaw Lets Remote Users Execute Programs on the Browser's Host
|
|
Jan 15 2002
|
Microsoft Internet Explorer (IE) Default Configuration Allows HTML-based Scripts to Access Your Windows Clipboard Contents
|
|
Jan 14 2002
|
Microsoft Internet Explorer Popup Object Tag Flaw Lets Remote Users Execute Programs on the Browser's Host
|
|
Jan 7 2002
|
Microsoft Internet Explorer Can Be Crashed By Remote Users With Javascript That Calls an Endless Loop of Modeless Dialogs
|
|
Jan 4 2002
|
Microsoft Internet Explorer (IE) May Allow Malicious Javascript to Poll a User's System for Known Files
|
|
Jan 2 2002
|
Microsoft Internet Explorer GetObject() Active Scripting Bug Lets Remote Code Access Files on the PC
|
|
Dec 27 2001
|
Lynx Web Browser Format String Flaw Lets Remote Web Sites (URLs) Execute Arbitrary Commands on the Host in a Certain Configuration
|
|
Dec 27 2001
|
Lynx Web Browser SSL Security Flaw Lets Remote Users Conduct Man-in-the-Middle Attacks to Access Sensitive Information
|
|
Dec 27 2001
|
KDE Konqueror Web Browser SSL Security Flaw Lets Remote Users Conduct Man-in-the-Middle Attacks to Access Sensitive Information
|
|
Dec 24 2001
|
Microsoft Internet Explorer Web Browser Can Be Crashed By Malicious Image Source Tag Javascript Supplied By Remote Users
|
|
Dec 24 2001
|
Microsoft Internet Explorer (IE) Text Form Processing Flaw May Cause IE to Crash
|
|
Dec 23 2001
|
Microsoft Internet Explorer Web Browser SSL Security Flaw Lets Remote Users Conduct Man-in-the-Middle Attacks to Access Sensitive Information
|
|
Dec 22 2001
|
Mozilla Web Browser Can Be Crashed By Malicious Image Source Tag Javascript Supplied By Remote Users
|
|
Dec 20 2001
|
Microsoft Internet Explorer (IE) Web Browser 'document.open()' Scripting Flaw Lets Remote Users Steal Cookies, Read Local Files, and Spoof Web Sites
|
|
Dec 17 2001
|
(Vendor Patch Fails to Block 'application/hta' Content Types) Re: Microsoft Internet Explorer (IE 6) Browser May Automatically and Silently Execute Arbitrary Code from a Remote Web Site When the User Views a Web Page or HTML-based E-mail
|
|
Dec 15 2001
|
Microsoft Internet Explorer Version 6 Lets Remote Scripts Access and Send Local Files
|
|
Dec 14 2001
|
Microsoft Internet Explorer (IE 6) Browser May Automatically and Silently Execute Arbitrary Code from a Remote Web Site When the User Views a Web Page or HTML-based E-mail
|
|
Dec 14 2001
|
(Microsoft Issues Fix) Microsoft Internet Explorer May Execute Javascript Contained Within an 'About:' URL in an Unauthorized Security Domain When the URL Contains an Extraneous '%' Character
|
|
Dec 14 2001
|
(Microsoft Issues Fix) Microsoft Internet Explorer Allows Malicious Web Pages to Spoof Downloadable File Types And Execute Code on the User's Computer When Opened Directly from the Browser
|
|
Dec 12 2001
|
Microsoft Internet Explorer May Execute Javascript Contained Within an 'About:' URL in an Unauthorized Security Domain When the URL Contains an Extraneous '%' Character
|
|
Dec 7 2001
|
Microsoft Internet Explorer Browser Can Be Crashed By Certain Image Tags
|
|
Dec 3 2001
|
Microsoft Internet Explorer Can Be Crashed By Malicious Javascript Causing a Stack Overflow in setTimeout() Function
|
|
Nov 26 2001
|
Microsoft Internet Explorer Fails to Enforce Cookie Prompting Preferences for Local Security Zone
|
|
Nov 26 2001
|
Microsoft Internet Explorer Allows Malicious Web Pages to Spoof Downloadable File Types And Execute Code on the User's Computer When Opened Directly from the Browser
|
|
Nov 26 2001
|
Microsoft Internet Explorer ActiveX Flaw Permits Remote Malicious HTML Code Containing an 'htmlfile' or 'htmlfile_FullWindowEmbed' Object to Access Local Files and Potentially Execute Commands
|
|
Nov 22 2001
|
Netscape Browser for MacOS Discloses HTML Web Form Password Contents to Local Users
|
|
Nov 22 2001
|
Opera Web Browser May Disclose Passwords Typed into an HTML Form to Local Users
|
|
Nov 19 2001
|
Microsoft Internet Explorer Cookie Disclosure Fix Discloses Patch Information to Remote Users
|
|
Nov 16 2001
|
(A User Provides Additional Details) Re: Opera Web Browser May Disclose Web Pages, Cookies, and Links from a Separate Domain to a Remote Server Running Malicious Javascript Code
|
|
Nov 15 2001
|
Opera Web Browser May Disclose Web Pages, Cookies, and Links from a Separate Domain to a Remote Server Running Malicious Javascript Code
|
|
Nov 14 2001
|
(Microsoft Issues Fix) Microsoft Internet Explorer Has Fixed Security Zone for about: URLs and Has Shared Cookie Flaw That Diminishes Cross-Site Scripting Protections
|
|
Nov 9 2001
|
(How to Test for this Vulnerability) Re: Microsoft Internet Explorer Has Fixed Security Zone for about: URLs and Has Shared Cookie Flaw That Diminishes Cross-Site Scripting Protections
|
|
Nov 9 2001
|
(Microsoft Issues Warning and Describes a Workaround) Microsoft Internet Explorer Has Fixed Security Zone for about: URLs and Has Shared Cookie Flaw That Diminishes Cross-Site Scripting Protections
|
|
Nov 8 2001
|
(Conectiva Issues Fix) w3m Text-based Web Browser May Execute Arbitrary Code
|
|
Oct 24 2001
|
(A User Provides a Workaround) Re: Microsoft Internet Explorer Has Fixed Security Zone for about: URLs and Has Shared Cookie Flaw That Diminishes Cross-Site Scripting Protections
|
|
Oct 24 2001
|
(Microsoft Issues Fix) Microsoft Internet Explorer for Mac OS X is Configured to Automatically Execute Downloaded Files
|
|
Oct 20 2001
|
Mozilla Browser Will Return HTTP Cookies to an FTP Server at the Same Domain as the HTTP Server, Which Could Be a Different Domain if the HTTP Server is Hosting Virtual Domains
|
|
Oct 20 2001
|
Microsoft Internet Explorer Has Fixed Security Zone for about: URLs and Has Shared Cookie Flaw That Diminishes Cross-Site Scripting Protections
|
|
Oct 20 2001
|
Microsoft Internet Explorer for Mac OS X is Configured to Automatically Execute Downloaded Files
|
|
Oct 18 2001
|
(Debian Issues Fix) w3m Text-based Web Browser May Execute Arbitrary Code
|
|
Oct 16 2001
|
Internet Explorer Sends Potentially Sensitive Web Browser Contents to Microsoft via the Network When an Error Occurs
|
|
Oct 11 2001
|
(Additional Details About the Zone Bug) Re: Microsoft Internet Explorer (IE) Web Browser Has Multiple URL-related Flaws That May Allow for Remote Code Execution, Remote HTTP Request Generation, and Application of Incorrect Security Restrictions
|
|
Oct 11 2001
|
Microsoft Internet Explorer (IE) Web Browser Has Multiple URL-related Flaws That May Allow for Remote Code Execution, Remote HTTP Request Generation, and Application of Incorrect Security Restrictions
|
|
Aug 27 2001
|
Installer for Netscape 6 on Solaris Uses Unsafe Temporary File Permissions that Allow Local Users to Obtain Elevated Privileges
|
|
Jul 16 2001
|
(Vendor Clarifies) Re: Opera Web Browser Can Be Crashed By a Malicious Web Server
|
|
Jul 11 2001
|
(FreeBSD Issues Fix) w3m Text-based Web Browser May Execute Arbitrary Code
|
|
Jul 10 2001
|
Opera Web Browser Can Be Crashed By a Malicious Web Server
|
|
Jun 21 2001
|
w3m Text-based Web Browser May Execute Arbitrary Code
|
|
Jun 8 2001
|
(Exploit Is Corrected) Re: Microsoft Internet Explorer Web Browser May Allow Remote Users to Read Some Text Files on the Browser's Hard Drive
|
|
Jun 7 2001
|
Microsoft Internet Explorer Web Browser May Allow Remote Users to Read Some Text Files on the Browser's Hard Drive
|
|
May 29 2001
|
(CIAC Issues Bulletin L-087) Re: Microsoft Internet Explorer Allows Remote Web Sites to Cause a Different Web URL Address to Be Displayed
|
