Liu Die Yu

**Name of the Vulnerable Software and Affected Versions** Adobe Flash Player versions 9.x before 9.0.159.0 Adobe Flash Player versions 10.x before 10.0.22.87 **Description** The issue is related to a potential Clickjacking variant, allowing remote attackers to trick a user into visiting an arbitrary URL via unknown vectors. **Recommendations** For Adobe Flash Player versions 9.x before 9.0.159.0, update to version 9.0.159.0 or later. For Adobe Flash Player versions 10.x before 10.0.22.87, update to version 10.0.22.87 or later.

Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions 9.0.124.0 and earlier Description: The issue allows remote attackers to cause victims to unknowingly click on a link or dialog via access control dialogs disguised as normal graphical elements. This can be used to hijack the camera or microphone and is related to "clickjacking." Recommendations: For Adobe Flash Player versions 9.0.124.0 and earlier, update to a version later than 9.0.124.0 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Microsoft Outlook Express versions 5.5 SP2 through 6 SP1 **Description** The issue allows remote attackers to bypass domain restrictions and execute arbitrary code. This can be demonstrated on Internet Explorer using script in a compiled help (CHM) file that references specific protocol handlers, such as `ms-its`, `ms-itss`, `its`, or `mk:@MSITStore`. **Recommendations** For Microsoft Outlook Express versions 5.5 SP2 through 6 SP1, consider disabling the MHTML protocol handler as a temporary workaround until a patch is available. Restrict access to compiled help files that reference the InfoTech Storage (ITS) protocol handlers to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Internet Explorer versions 6 SP1 and earlier **Description** The issue allows remote attackers to manipulate drag and drop behaviors and other mouse click actions by calling the `window.moveBy` method. This enables attackers to direct these actions to other windows. **Recommendations** For Internet Explorer versions 6 SP1 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Internet Explorer versions 6 SP1 and earlier **Description** The issue allows remote attackers to bypass zone restrictions and execute Javascript. This is achieved by setting the window's `href` to the malicious Javascript, then calling `execCommand("Refresh")` to refresh the page. **Recommendations** For Internet Explorer versions 6 SP1 and earlier, consider disabling the use of `execCommand("Refresh")` until a patch is available. Restrict access to potentially malicious Javascript sources to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Internet Explorer versions 6 SP1 and earlier **Description** The issue allows remote attackers to bypass zone restrictions and read arbitrary files. This can be achieved by modifying the `createTextRange` method and using `CreateLink`, or by modifying the `createRange` method and using the FIND dialog to select text. **Recommendations** For Internet Explorer versions 6 SP1 and earlier, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Internet Explorer versions 6 SP1 and earlier **Description** The issue allows remote attackers to bypass zone restrictions. This can be achieved through several methods, including using the NavigateAndFind method to load a file: URL containing Javascript, utilizing the window.open method to load a file: URL containing Javascript, setting the href property in the base tag for the search window, loading the search window into an Iframe, or caching a javascript: URL in the browser history and then accessing that URL in the same frame as the target domain. **Recommendations** For Internet Explorer versions 6 SP1 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Internet Explorer version 6 SP1 **Description** The issue concerns the download function, which allows remote attackers to obtain the cache directory name. This is achieved through an HTTP response with an invalid ContentType and a .htm file. As a result, security mechanisms that rely on random names could be bypassed. **Recommendations** For Internet Explorer version 6 SP1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Internet Explorer versions 5.01 through 6 SP1 **Description** The issue allows remote attackers to manipulate drag and drop behaviors and other mouse click actions by accessing the window.moveBy method through method caching (SaveRef). This can be exploited to direct actions to other windows. **Recommendations** For Internet Explorer versions 5.01 through 6 SP1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.