ZDNet UK

CBS INTERACTIVE UK BUSINESS SITES:
atlarge.com
BNET UK
silicon.com
SmartPlanet.com
ZDNet.co.uk

You are here: ZDNet.co.uk > Resources > Downloads > Windows > Antivirus, Firewall, & Spyware > Corporate Security Software

Resources Downloads

Microsoft XML 4.0 Core Services Vulnerability Patch MS02-008

		License	Free
		Requirements	Windows NT/2000
Downloads	426	Limitations	None
Publisher	Microsoft	File Size	4.6M
Date added	02 Mar 2002		Check your speed

Publisher's Description

Report a broken link

Microsoft XML Core Services (MSXML) includes the XMLHTTP ActiveX control, which allows web pages rendering in the browser to send or receive XML data via HTTP operations such as POST, GET, and PUT. The control provides security measures designed to restrict web pages so they can only use the control to request data from remote data sources. A flaw exists in how the XMLHTTP control applies IE security zone settings to a redirected data stream returned in response to a request for data from a web site. A vulnerability results because an attacker could seek to exploit this flaw and specify a data source that is on the user's local system. The attacker could then use this to return information from the local system to the attacker's web site. An attacker would have to entice the user to a site under his control to exploit this vulnerability. It cannot be exploited by HTML email. In addition, the attacker would have to know the full path and file name of any file he would attempt to read. Finally, this vulnerability does not give an attacker any ability to add, change or delete data.

Did you find this download useful?
7 out of 14 users found this download useful

People who downloaded this software also downloaded...

Smart Keystroke Recorder Pro 4.9

Monitor your computer and Internet activities.

More info

Download

My-iWallet 2

Protect your online log on using biometric authentication instead of passwords.

More info

Download

Cute Password Manager Pro 2008.1.3.9

Log into Web sites and fill forms with just a few mouse clicks.

More info

Download

Mirramail Encrypted Email 3.0

Send messages using a complete e-mail program.

More info

Download

Email Privacy 3

Bypass your ISP's mail server and send e-mail directly to your recipient's mailbox.

More info

Download

DeVault Pro 2009 S3

Organize, backup, encrypt, and share all your files via secure digital vaults.

More info

Download

Anti-Spam Guard 4

Secure your incoming and outgoing e-mails and delete junk files.

More info

Download

eCipher Free 1.6

Encrypt and send secure e-mail easily.

More info

Download

Sa4o - SafestMail4Outlook 2

Protect your e-mail against unsolicited messages and spams.

More info

Download

LANwriter 1.0

Get an application for network CD/DVD writing, FTP and secure data publishing.

More info

Download

More In Security management

Download

Brocade File Insight 2.0

Brocade File Insight is a free Windows-based reporting utility that provides a quick and easy way to understand your SMB/CIFS network file environments.

Downloads: 4,163
Requirements: Microsoft 32-bit Windows Server 2003, XP Professional, or newer
License: Free Tool / Utility
Publisher: Brocade
Size: 0

Install Flash Player Plugin

Featured Talkback

It seems to me this is a burden being placed on the wrong shoulders. There is not an It system in the world that can stop an individual taking information in their heads and spewing out at the nearest undesirable third party.