CVE-2002-1443
https://notcve.org/view.php?id=CVE-2002-1443
The Google toolbar 1.1.58 and earlier allows remote web sites to monitor a user's input into the toolbar via an "onkeydown" event handler. La barra de herramientas de Google 1.1.58 y versiones anteriores, permite a sitios web remotos supervisar la entrada de un usuario en la barra de herramientas mediante un manejador de eventos 'onkeydown'. • http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0066.html http://online.securityfocus.com/archive/1/286527 http://sec.greymagic.com/adv/gm001-mc http://toolbar.google.com/whatsnew.php3 http://www.securityfocus.com/bid/5426 https://exchange.xforce.ibmcloud.com/vulnerabilities/10054 •
CVE-2002-1442
https://notcve.org/view.php?id=CVE-2002-1442
The Google toolbar 1.1.58 and earlier allows remote web sites to perform unauthorized toolbar operations including script execution and file reading in other zones such as "My Computer" by opening a window to tools.google.com or the res: protocol, then using script to modify the window's location to the toolbar's configuration URL, which bypasses the origin verification check. La barra de herramientas de Google 1.1.58 y versiones anteriores, permite a sitios web remotos realizar operaciones no autorizadas de la barra de herramientas, incluidas la ejecución de rutinas y la lectura de ficheros en otras zonas como 'My Computer' abriendo una ventana a tools.google.com o el protocolo res:, y a continuación utilizando rutinas para modificar la ubicación de la ventana a la de la URL de configuración de la barra de herramientas, con lo que se elude la verificación original. • http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0066.html http://online.securityfocus.com/archive/1/286527 http://sec.greymagic.com/adv/gm001-mc http://www.securityfocus.com/bid/5424 •
CVE-2002-1444 – Google Toolbar 1.1.60 - Search Function Denial of Service
https://notcve.org/view.php?id=CVE-2002-1444
The Google toolbar 1.1.60, when running on Internet Explorer 5.5 and 6.0, allows remote attackers to cause a denial of service (crash with an exception in oleaut32.dll) via malicious HTML, possibly related to small width and height parameters or an incorrect call to the Google.Search() function. • https://www.exploit-db.com/exploits/21712 http://online.securityfocus.com/archive/1/287498 http://www.iss.net/security_center/static/9883.php http://www.securityfocus.com/bid/5477 http://www.sztolnia.pl/hack/googIE/googIE.html •