OSVDB: Open Sourced Vulnerability Database

Creditee: Adi Cohen

Known Contact Information:

None at this time

Known Affiliations:

IBM Rational Application Security (as of 2011-06-15)
IBM Security Systems - Application Security (as of 2012-07-10)

Disclosed Vulnerabilities (4):

Disc. Date	OSVDB ID	CVEID	Title
2012-07-10	83656	2012-0175	Microsoft Windows File / Directory Name Handling Remote Code Execution
2012-06-12	82861	2012-1858	Microsoft IE HTML Sanitization String Handling Remote Information Disclosure
2012-01-10	78208	2012-0007	Microsoft AntiXSS Library Sanitization Module Escaped CSS Content Parsing XSS Weakness
2011-06-15	72944	2011-1252	Microsoft IE SafeHTML Function XSS

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.