Computer Security

Multiple Microsoft Internet Explorer browser security vulnerabilities
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Multiple Microsoft Internet Explorer browser security vulnerabilities
updated since 09.02.2005
Published:16.03.2005
Source:MICROSOFT
SecurityVulns ID:4461
Type:remote
Level:8/10
Description:Drag-n-Drop vulnerability, URL Decoding Zone Spoofing Vulnerability, DHTML Method Heap Memory Corruption Vulnerability, Channel Definition Format (CDF) Cross Domain Vulnerability. This vulnerability can potentially be used for silent spyware or adware installation.
Affected:MICROSOFT : Internet Explorer 5.5
 MICROSOFT : Internet Explorer 6.0
Original documentdocumentliudieyu_(at)_umbrella.name, "Drop to STARTUP Folder II" published on 2005/02/08 (16.03.2005)
 documentValentin Avram, [Full Disclosure] Using DHTML XSS to launch HHCTRL exploit (16.02.2005)
 documentSECUNIA, [Full-Disclosure] Secunia Research: Microsoft Internet Explorer Multiple Vulnerabilities (11.02.2005)
 documentSECUNIA, [Full-Disclosure] Secunia Research: Microsoft Internet Explorer "createControlRange()" Memory Corruption (11.02.2005)
 documentMICROSOFT, Microsoft Security Bulletin MS05-014 Cumulative Security Update for Internet Explorer (867282) (09.02.2005)
Files:Drop to STARTUP Folder II exploit
 Microsoft Security Bulletin MS05-014 Cumulative Security Update for Internet Explorer (867282)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru