Navigation section

cross-site scripting

  1. News

    MS11-061 - Important: Vulnerability in Remote Desktop Web Access Could Allow Elevation of Privilege

    Severity Rating: Important - Revision Note: V1.0 (August 9, 2011): Bulletin published.Summary: This security update resolves a privately reported vulnerability in Remote Desktop Web Access. The vulnerability is a cross-site scripting (XSS) vulnerability that could allow elevation of privilege...
    • News
    • Thread
    • cross-site scripting elevation of privilege internet explorer ms11-061 remote desktop security update web access xss filter
    • Replies: 0
    • Forum: Security Alerts
  2. News

    MS11-061 - Important: Vulnerability in Remote Desktop Web Access Could Allow Elevation of Privilege

    Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Remote Desktop Web Access. The vulnerability is a cross-site scripting (XSS) vulnerability that could allow elevation of privilege, enabling an attacker to execute arbitrary commands on the...
    • News
    • Thread
    • browser security cross-site scripting elevation of privilege internet explorer remote desktop security update vulnerability web access xss filter
    • Replies: 0
    • Forum: Security Alerts
  3. JMH

    Windows 7 Researchers Finds Dangerous Vulnerability in Skype

    Link Removed
    • JMH
    • Thread
    • consultant cross-site scripting javascript malware password change remote access security skype vulnerability
    • Replies: 1
    • Forum: Windows Security
  4. News

    MS11-051 - Important: Vulnerability in Active Directory Certificate Services Web Enrollment Could Al

    Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Active Directory Certificate Services Web Enrollment. The vulnerability is a cross-site scripting (XSS) vulnerability that could allow elevation of privilege, enabling an attacker to execute...
    • News
    • Thread
    • active directory certificate services cross-site scripting microsoft privilege escalation security update vulnerability web enrollment xss
    • Replies: 0
    • Forum: Security Alerts
  5. News

    Microsoft Security Advisory (2501696): Vulnerability in MHTML Could Allow Information Disclosure - 3

    Revision Note: V1.1 (March 11, 2011): Revised Executive Summary to reflect investigation of limited, targeted attacks. Advisory Summary:Microsoft is investigating new public reports of a vulnerability in all supported editions of Microsoft Windows. The vulnerability could allow an attacker to...
    • News
    • Thread
    • advisory cross-site scripting exploit fix information disclosure mhtml microsoft security vulnerability windows
    • Replies: 0
    • Forum: Security Alerts
  6. News

    Microsoft releases Security Advisory 2501696

    Hello. Today we're releasing Link Removed due to 404 Error, which describesa publicly disclosed scripting vulnerability affecting all versions ofMicrosoft Windows. The main impact of the vulnerability is unintendedinformation disclosure. We're aware of publishedinformation and proof-of-concept...
    • News
    • Thread
    • advisory blog collaboration cross-site scripting defense disclosure exploit fix-it html internet explorer mhtml microsoft protocol research security threat update user information vulnerability workaround
    • Replies: 0
    • Forum: Security Alerts
  7. reghakr

    Apple's Safari updates fix auto-complete vulnerability

    The latest updates to Apple's Safari WebKit-based browser, versions 5.0.1 and 4.1.1, include several new features, such as enabling Safari Extensions and introducing the Safari Extensions Gallery,. They also address a number of security vulnerabilities. In total, the Safari updates close 15...
    • reghakr
    • Thread
    • apple auto-complete browser cross-site scripting data theft heap overflow information disclosure internet explorer mac os malware memory corruption safari security svg updates vulnerabilities web security webkit windows xp xss
    • Replies: 4
    • Forum: General Computing
  8. kemical

    Windows 7 Critical weaknesses found in four browsers

    Safari, IE, Chrome and Firefox The autocomplete features in Safari, IE, Firefox, or Chrome are vulnerable to ID theft and other attacks. Insecurity expert Jeremiah Grossman is expected to tell a Black Hat conference that the four major browsers have critical weaknesses that have yet to be...
    • kemical
    • Thread
    • autocomplete black hat conference chrome cross-site scripting data protection firefox hack id theft internet explorer jeremiah grossman privacy issues proof of concept safari security software updates user information vulnerability web browsers
    • Replies: 1
    • Forum: Windows Security
Back
Top