visited software vulnerabilities
vulnerabilities.aspcode.net
Searching visited software vulnerabilities
Internet Explorer 5.0 does not properly reset t
username/password
|
restricted
|
standard
|
controls
|
properly
|
Internet
|
Explorer
|
visited
|
system
|
access
|
other
|
could
|
users
|
allow
|
sites
|
cache
|
reset
|
which
|
does
|
were
|
same
|
not
|
Web
|
use
|
Internet Explorer 5.0 does not properly reset the username/password cache for Web sites that do not use standard cache controls, which could allow users on the same system to access restricted web sites that were visited by other users.
Internet Explorer 3 records a history of all UR
Temporary
|
tailored
|
History"
|
Internet
|
Explorer
|
displays
|
cleared
|
folders
|
selects
|
because
|
browses
|
visible
|
history
|
visited
|
records
|
located
|
option
|
"Clear
|
files
|
which
|
URL's
|
user
|
not
|
DAT
|
all
|
Internet Explorer 3 records a history of all URL's that are visited by a user in DAT files located in the Temporary Internet Files and History folders, which are not cleared when the user selects the "Clear History" option, and are not visible when the user browses the folders because of tailored displays.
The Microsoft Java implementation, as used in I
implementation
|
different
|
attackers
|
malicious
|
Microsoft
|
contains
|
security
|
properly
|
Internet
|
Explorer
|
context
|
portion
|
visited
|
cookies
|
execute
|
allows
|
domain
|
parsed
|
within
|
applet
|
remote
|
script
|
steal
|
loads
|
which
|
being
|
colon
|
site
|
Java
|
used
|
user
|
via
|
URL
|
not
|
The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to steal cookies and execute script in a different security context via a URL that contains a colon in the domain portion, which is not properly parsed and loads an applet from a malicious site within the security context of the site that is being visited by the user.
Microsoft Internet Explorer 5.01 and 6 allows c
Microsoft
|
Explorer
|
Internet
|
Microsoft Internet Explorer 5.01 and 6 allows certain script to persist across navigations between pages, which allows remote attackers to obtain the window location of visited web pages in other domains or zones, aka "Window Location Information Disclosure Vulnerability."
Mozilla Firefox 2.0.0.1 and earlier does not pr
Firefox
|
Mozilla
|
Mozilla Firefox 2.0.0.1 and earlier does not prompt users before saving bookmarklets, which allows remote attackers to bypass the same-domain policy by tricking a user into saving a bookmarklet with a data: scheme, which is executed in the context of the last visited web page.
WebCore on Apple Mac OS X 10.3.9 and 10.4.10 re
WebCore
|
Apple
|
Mac
|
WebCore on Apple Mac OS X 10.3.9 and 10.4.10 retains properties of certain global objects when a new URL is visited in the same window, which allows remote attackers to conduct cross-site scripting (XSS) attacks.
Software vulnerabilities results 1 to 7 of 7
Page:
1