Searching tag software vulnerabilities

Remote attackers can crash Lynx and Internet Ex

attackers | parameter | Internet | Explorer | Remote | width | large | using | crash | Lynx | can | IMG | tag |

Remote attackers can crash Lynx and Internet Explorer using an IMG tag with a large width parameter.


Hotmail allows Javascript to be executed via th

Javascript | attackers | commands | allowing | executed | Hotmail | execute | account | remote | user's | allows | STYLE | HTML | via | tag |

Hotmail allows Javascript to be executed via the HTML STYLE tag, allowing remote attackers to execute commands on the user's Hotmail account.


Opera 3.2.1 allows remote attackers to cause a

Opera |

Opera 3.2.1 allows remote attackers to cause a denial of service (application crash) via a URL that contains an extra / in the http:// tag.


Buffer overflows in Microsoft Windows Media Pla

arbitrary | attackers | Microsoft | overflows | commands | execute | earlier | Windows | Player | Buffer | remote | allow | Media | via |

Buffer overflows in Microsoft Windows Media Player 7 and earlier allow remote attackers to execute arbitrary commands via (1) a long version tag in an .ASX file, or (2) a long banner tag, a variant of the ".ASX Buffer Overrun" vulnerability as discussed in MS:MS00-090.


Aladdin eSafe Gateway versions 3.0 and earlier

circumvent | filtering | embedding | including | attacker | versions | earlier | scripts | Gateway | certain | Aladdin | within | remote | allows | SCRIPT | eSafe | HTML | tags |

Aladdin eSafe Gateway versions 3.0 and earlier allows a remote attacker to circumvent filtering of SCRIPT tags by embedding the scripts within certain HTML tags including (1) onload in the BODY tag, (2) href in the A tag, (3) the BUTTON tag, (4) the INPUT tag, or (5) any other tag in which scripts can be defined.


Microsoft Internet Explorer 5.5 and 6.0 does no

Verification | executable | attackers | Microsoft | properly | Internet | Explorer | browser | objects | remote | client | "Cross | Object | invoke | within | domain | verify | window | allows | which | files | frame | does | read | Tag" | not | via | tag | aka |

Microsoft Internet Explorer 5.5 and 6.0 does not properly verify the domain of a frame within a browser window, which allows remote attackers to read client files or invoke executable objects via the Object tag, aka "Cross Domain Verification in Object Tag."


Cross-site scripting vulnerability in phpBB 2.0

vulnerability | Cross-site | scripting | phpBB |

Cross-site scripting vulnerability in phpBB 2.0.0 (phpBB2) allows remote attackers to execute Javascript as other phpBB users by including a http:// and a double-quote (") in the [IMG] tag, which bypasses phpBB's security check, terminates the src parameter of the resulting HTML IMG tag, and injects the script.


Cross-site scripting (XSS) vulnerability in cod

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in codeparse.php in Open Bulletin Board (OpenBB) 1.0.0 RC3 allows remote attackers to inject arbitrary web script or HTML via (1) myhome.php, (2) an onerror attribute in an IMG tag (a variant of CVE-2002-0330), or (3) a glow tag.


The pnm_get_chunk function in xine 0.99.2 and e

pnm_get_chunk | function | xine |

The pnm_get_chunk function in xine 0.99.2 and earlier, and other packages such as MPlayer that use the same code, does not properly verify that the chunk size is less than the PREAMBLE_SIZE, which causes a read operation with a negative length that leads to a buffer overflow via (1) RMF_TAG, (2) DATA_TAG, (3) PROP_TAG, (4) MDPR_TAG, and (5) CONT_TAG values, a different vulnerability than CVE-2004-1187.


Internet Explorer 6.0 in Windows XP SP2 allows

DesignScience | demonstrated | Information | MathPlayer | Javascript | formatted | attackers | contains | Explorer | Internet | comment | between | DOCTYPE | Windows | ActiveX | remote | allows | plugin | prompt | bypass | using | XHTML | HTML | page | Bar | SP2 | tag | via |

Internet Explorer 6.0 in Windows XP SP2 allows remote attackers to bypass the Information Bar prompt for ActiveX and Javascript via an XHTML page that contains an Internet Explorer formatted comment between the DOCTYPE tag and the HTML tag, as demonstrated using the DesignScience MathPlayer ActiveX plugin.


Fusion News 3.6.1 allows remote attackers to ad

Fusion | News |

Fusion News 3.6.1 allows remote attackers to add user accounts, if the administrator is logged in, via a comment that contains an img bbcode tag that calls index.php with the signup action, which is executed when the administrator's browser loads the page with the img tag.


webadmin-apache.conf in Novell Web Manager of N

webadmin-apacheconf | inconsistent | uppercase | lowercase | attackers | directory | NetWare | Manager | control | WEB-INF | allows | remote | Novell | bypass | folder | access | volume | Alias | which | uses | Web | tag |

webadmin-apache.conf in Novell Web Manager of Novell NetWare 6.5 uses an uppercase Alias tag with an inconsistent lowercase directory tag for a volume, which allows remote attackers to bypass access control to the WEB-INF folder.


ImageMagick before 6.0 allows remote attackers

ImageMagick | attackers | service | denial | allows | before | remote | cause |

ImageMagick before 6.0 allows remote attackers to cause a denial of service (application crash) via a TIFF image with an invalid tag.


Multiple buffer overflows in the XSL parser for

overflows | Multiple | IceCast | parser | buffer | XSL |

Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow attackers to cause a denial of service and possibly execute arbitrary code via (1) a long test value in an xsl:when tag, (2) a long test value in an xsl:if tag, or (3) a long select value in an xsl:value-of tag.


Integer overflow in the exif_process_IFD_TAG fu

exif_process_IFD_TAG | function | overflow | Integer | before | exifc | PHP |

Integer overflow in the exif_process_IFD_TAG function in exif.c in PHP before 4.3.11 may allow remote attackers to execute arbitrary code via an IFD tag that leads to a negative byte count.


Microsoft Front Page allows attackers to cause

attackers | Microsoft | service | denial | allows | Front | cause | Page |

Microsoft Front Page allows attackers to cause a denial of service (crash) via a crafted style tag in a web page.


PHP-Fusion allows remote attackers to inject ar

PHP-Fusion | attackers | arbitrary | Cascading | Sheets | allows | remote | inject | Style |

PHP-Fusion allows remote attackers to inject arbitrary Cascading Style Sheets (CSS) via the BBCode color tag.


Multiple cross-site scripting (XSS) vulnerabili

cross-site | scripting | Multiple |

Multiple cross-site scripting (XSS) vulnerabilities in TyroCMS beta 1.0 allow remote attackers to inject arbitrary web script or HTML via (1) a javascript URI in an img BBCode tag, or a JavaScript event in a (2) url BBCode tag or (3) color BBCode tag.


Cross-site scripting (XSS) vulnerability in tag

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in tag.php in CloudNine Interactive CJ Tag Board 3.0 allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a url BBcode tag in the cjmsg parameter.


Multiple absolute path traversal vulnerabilitie

vulnerabilities | traversal | Microsoft | attackers | arbitrary | Explorer | Internet | absolute | Multiple | Windows | access | remote | local | files | allow | path | via | SP2 |

Multiple absolute path traversal vulnerabilities in Microsoft Internet Explorer 6 on Windows XP SP2 allow remote attackers to access arbitrary local files via the file: URI in the (1) src attribute of a (a) bgsound, (b) input, (c) EMBED, (d) img, or (e) script tag; (2) data attribute of an object tag; (3) value attribute of a param tag; (4) background attribute of a body tag; or (5) the background:url attribute declared in the BODY parameter of a STYLE tag.


Software vulnerabilities results 1 to 20 of 302     
Page: 12345...16