Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS) - Microsoft

Microsoft Security Advisory (2501696): Vulnerability in MHTML Could Allow Information Disclosure - 3

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Windows & DOS: Issues & Discussions Security Advisories (RSS) - Microsoft Microsoft Security Advisory (2501696): Vulnerability in MHTML Could Allow Information Disclosure - 3
# 1  
Old 03-11-2011
Microsoft Security Advisory (2501696): Vulnerability in MHTML Could Allow Information Disclosure - 3
Revision Note: V1.1 (March 11, 2011): Revised Executive Summary to reflect investigation of limited, targeted attacks. Advisory Summary:Microsoft is investigating new public reports of a vulnerability in all supported editions of Microsoft Windows. The vulnerability could allow an attacker to cause a victim to run malicious scripts when visiting various Web sites, resulting in information disclosure. This impact is similar to server-side cross-site scripting (XSS) vulnerabilities. Microsoft is aware of published information and proof-of-concept code that attempts to exploit this vulnerability. In addition, at this time, Microsoft is aware of public proof-of-concept code being used in limited, targeted attacks. Users who have applied the automated Microsoft Fix it solution described in Microsoft Knowledge Base Article 2501696 or manually applied the "Enable the MHTML protocol lockdown" workaround described in this advisory to their systems are not exposed to this vulnerability.

More...
Login or Register to Ask a Question

Previous Thread | Next Thread
Login or Register to Ask a Question

LEARN ABOUT SUSE

http::cookies::microsoft

HTTP::Cookies::Microsoft(3)				User Contributed Perl Documentation			       HTTP::Cookies::Microsoft(3)

NAME

       HTTP::Cookies::Microsoft - access to Microsoft cookies files

SYNOPSIS

	use LWP;
	use HTTP::Cookies::Microsoft;
	use Win32::TieRegistry(Delimiter => "/");
	my $cookies_dir = $Registry->
	     {"CUser/Software/Microsoft/Windows/CurrentVersion/Explorer/Shell Folders/Cookies"};

	$cookie_jar = HTTP::Cookies::Microsoft->new(
			  file	   => "$cookies_dir\index.dat",
			  'delayload' => 1,
		      );
	my $browser = LWP::UserAgent->new;
	$browser->cookie_jar( $cookie_jar );

DESCRIPTION

       This is a subclass of "HTTP::Cookies" which loads Microsoft Internet Explorer 5.x and 6.x for Windows (MSIE) cookie files.

       See the documentation for HTTP::Cookies.

METHODS

       The following methods are provided:

       $cookie_jar = HTTP::Cookies::Microsoft->new;
	   The constructor takes hash style parameters. In addition to the regular HTTP::Cookies parameters, HTTP::Cookies::Microsoft recognizes
	   the following:

	     delayload:       delay loading of cookie data until a request
			      is actually made. This results in faster
			      runtime unless you use most of the cookies
			      since only the domain's cookie data
			      is loaded on demand.

CAVEATS

       Please note that the code DOESN'T support saving to the MSIE cookie file format.

AUTHOR

       Johnny Lee <typo_pl@hotmail.com>

COPYRIGHT

       Copyright 2002 Johnny Lee

       This library is free software; you can redistribute it and/or modify it under the same terms as Perl itself.

perl v5.12.1							    2009-06-13					       HTTP::Cookies::Microsoft(3)