Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2011-1894

EPSS 13.89% · P94
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2011-1894

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The MHTML protocol handler in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly handle a MIME format in a request for embedded content in an HTML document, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted EMBED element in a web page that is visited in Internet Explorer, aka "MHTML Mime-Formatted Request Vulnerability."
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Windows MHTML Mime格式请求跨站脚本攻击漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Windows是美国微软(Microsoft)公司发布的一系列操作系统。 该漏洞位于Microsoft Windows XP SP2和SP3,Windows Server 2003 SP2,Windows Vista SP1和SP2,Windows Server 2008 Gold,SP2,R2和R2 SP1,以及Windows 7 Gold和SP1中。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2011-1894

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2011-1894

登录查看更多情报信息。

Same Patch Batch · n/a · 2011-06-16 · 77 CVEs total

CVE-2011-1250Microsoft Internet Explorer Link属性远程代码执行漏洞
CVE-2011-1278Microsoft Excel WriteAV内存破坏漏洞
CVE-2011-1261Microsoft Internet Explorer Selection对象内存破坏漏洞
CVE-2011-1260Microsoft Internet Explorer布局内存破坏漏洞
CVE-2011-1258Microsoft Internet Explorer拖放操作信息泄露漏洞
CVE-2011-1256Microsoft Internet Explorer DOM编辑内存破坏漏洞
CVE-2011-1255Microsoft Internet Explorer Time元素内存破坏漏洞
CVE-2011-1254Microsoft Internet Explorer拖放事件内存破坏漏洞
CVE-2011-1252Microsoft Internet Explorer 'toStaticHTML()' HTML过滤信息泄露漏洞
CVE-2011-1251Microsoft Internet Explorer DOM操作内存破坏漏洞
CVE-2011-1262Microsoft Internet Explorer HTTP重定向内存破坏漏洞
CVE-2011-1249Microsoft Windows 'AFD.sys'驱动程序特权提升漏洞
CVE-2011-1246Microsoft Internet Explorer MIME Sniffing信息泄露漏洞
CVE-2011-0664Microsoft .NET Framework和Silverlight数组偏移漏洞
CVE-2011-0658Microsoft Windows OLE自动协议实现WMF图形解析漏洞
CVE-2011-2202PHP main/rfc1867.c rfc1867_post_handler函数文件路径注入漏洞
CVE-2011-2128Adobe Shockwave Player 缓冲区错误漏洞
CVE-2011-2127Adobe Shockwave Player 缓冲区错误漏洞
CVE-2011-2126Adobe Shockwave Player 缓冲区错误漏洞
CVE-2011-2125Adobe Shockwave Player 缓冲区错误漏洞

Showing top 20 of 77 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2011-1894

No comments yet

Leave a comment