The Active Network
ActiveMac Anonymous | Create a User | Reviews | News | Forums | Advertise  
 

User Controls

New User

Login

Edit/View My Profile

ActiveMac

Articles

Forums

Links

News

News Search

Reviews

News Centers

Windows/Microsoft

DVD

ActiveHardware

Xbox

MaINTosh

News Search

ANet Chats

The Lobby

Special Events Room

Developer's Lounge

XBox Chat

FAQ's

Windows 98/98 SE

Windows 2000

Windows Me

Windows "Whistler" XP

Windows CE

Internet Explorer 6

Internet Explorer 5

Xbox

DirectX

DVD's

TopTechTips

Registry Tips

Windows 95/98

Windows 2000

Internet Explorer 4

Internet Explorer 5

Windows NT Tips

Program Tips

Easter Eggs

Hardware

DVD

Latest Reviews

Applications

Microsoft Windows XP Professional

Norton SystemWorks 2002

Hardware

Intel Personal Audio Player 3000

Microsoft Wireless IntelliMouse Explorer

Site News/Info

About This Site

Affiliates

ANet Forums

Contact Us

Default Home Page

Link To Us

Links

Member Pages

Site Search

Awards

Credits
©1997/2004, Active Network. All Rights Reserved.
Layout & Design by Designer Dream. Content written by the Active Network team. Please click here for full terms of use and restrictions or read our Privacy Statement.

  *  

  Microsoft Security Bulletin MS02-008: XMLHTTP Control Can Allow Access to Local Files
Time: 00:23 EST/05:23 GMT | News Source: ActiveWin.com | Posted By: Matthew Sabean

Microsoft XML Core Services (MSXML) includes the XMLHTTP ActiveX control, which allows web pages rendering in the browser to send or receive XML data via HTTP operations such as POST, GET, and PUT. The control provides security measures designed to restrict web pages so they can only use the control to request data from remote data sources. A flaw exists in how the XMLHTTP control applies IE security zone settings to a redirected data stream returned in response to a request for data from a web site. A vulnerability results because an attacker could seek to exploit this flaw and specify a data source that is on the user’s local system. The attacker could then use this to return information from the local system to the attacker’s web site.

A complete list of all Security Bulletins can be found in our Microsoft Security Bulletin Summary List in our Support Section.
Write Comment
Return to News

  Displaying 551 through 553 of 553
Prev | First 		  The time now is 10:05:19 PM ET.
Any comment problems? E-mail us
#551 By 4240821 (82.115.4.230) at 6/14/2025 5:56:22 PM
https://nsfw.su/v/wcpm5ufp1kta.php
https://nsfw.su/v/9aibhecb7bt9.php
https://nsfw.su/v/ap1tstcoxihj.php
https://nsfw.su/v/emlntywex4h3.php
https://nsfw.su/v/pslgkwdku1cc.php
https://nsfw.su/v/17j46okyszfv.php
https://nsfw.su/v/l0m0bplqd4ib.php
https://nsfw.su/v/gkowznzbwxz1.php
https://nsfw.su/v/zw7sy5ug5ob4.php
https://nsfw.su/v/cpvg3u73gzkq.php

#552 By 4240821 (82.115.4.230) at 6/15/2025 11:59:18 PM
https://nsfw.su/v/4ayjogt5shiw.php
https://nsfw.su/v/035e9rq8zy17.php
https://nsfw.su/v/ceove0y63kk6.php
https://nsfw.su/v/ug8fm2r3rqar.php
https://nsfw.su/v/ccrh82y3kn3y.php
https://nsfw.su/v/hiwq0waun3kz.php
https://nsfw.su/v/hmhzbdevilov.php
https://nsfw.su/v/860shyd4c0yy.php
https://nsfw.su/v/hqo0fqcuhjpi.php
https://nsfw.su/v/q4bbgh466lxl.php

#553 By 4240821 (82.115.4.230) at 6/16/2025 11:55:46 AM
https://nsfw.su/v/y1btvj0rxrzg.php
https://nsfw.su/v/l0s39zyx3rby.php
https://nsfw.su/v/fzttloy6jvuo.php
https://nsfw.su/v/ieev20893r30.php
https://nsfw.su/v/n84vq74pw6c4.php
https://nsfw.su/v/tludogdl4qk7.php
https://nsfw.su/v/nsg13zsco1yz.php
https://nsfw.su/v/tqsrwimt4gp5.php
https://nsfw.su/v/860shyd4c0yy.php
https://nsfw.su/v/irpx8wliwodh.php

Write Comment
Return to News
  Displaying 551 through 553 of 553
Prev | First 		  The time now is 10:05:19 PM ET.
Any comment problems? E-mail us
User name and password:

 

   *  
  *   *