Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2010-0489
Race condition in Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, and 7 allows remote malicious users to execute arbitrary code via a crafted HTML document that triggers memory corruption, aka "Race Condition Memory Corruption Vulnerability."
Microsoft Internet Explorer 7
Microsoft Windows 2003 Server
Microsoft Windows Server 2003
Microsoft Windows Xp
Microsoft Windows Xp -
Microsoft Windows Server 2008
Microsoft Windows Server 2008 -
Microsoft Windows Vista
Microsoft Internet Explorer 6
Microsoft Internet Explorer 5.01
Microsoft Windows 2000
828
VMScore
CVE-2010-0267
Microsoft Internet Explorer 6, 6 SP1, and 7 does not properly handle objects in memory, which allows remote malicious users to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "Uninitiali...
Microsoft Internet Explorer 7
Microsoft Windows 2003 Server
Microsoft Windows Server 2003
Microsoft Windows Xp
Microsoft Windows Xp -
Microsoft Windows Server 2008
Microsoft Windows Server 2008 -
Microsoft Windows Vista
Microsoft Internet Explorer 6
Microsoft Windows 2000
940
VMScore
CVE-2010-0806
Use-after-free vulnerability in the Peer Objects component (aka iepeers.dll) in Microsoft Internet Explorer 6, 6 SP1, and 7 allows remote malicious users to execute arbitrary code via vectors involving access to an invalid pointer after the deletion of an object, as exploited in ...
Microsoft Internet Explorer 7
Microsoft Windows 2003 Server
Microsoft Windows Server 2003
Microsoft Windows Xp
Microsoft Windows Xp -
Microsoft Windows Server 2008
Microsoft Windows Server 2008 -
Microsoft Windows Vista
Microsoft Internet Explorer 6
Microsoft Windows 2000
2 EDB exploits
12 Articles
828
VMScore
CVE-2010-0492
Use-after-free vulnerability in mstime.dll in Microsoft Internet Explorer 8 allows remote malicious users to execute arbitrary code via vectors related to the TIME2 behavior, the CTimeAction object, and destruction of markup, leading to memory corruption, aka "HTML Object Me...
Microsoft Internet Explorer 8
Microsoft Internet Explorer 8.0.6001
Microsoft Windows 2003 Server
Microsoft Windows 7 -
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows Vista -
Microsoft Windows Xp
Microsoft Windows Xp -
445
VMScore
CVE-2017-0247
A denial of service vulnerability exists when the ASP.NET Core fails to properly validate web requests. NOTE: Microsoft has not commented on third-party claims that the issue is that the TextEncoder.EncodeCore function in the System.Text.Encodings.Web package in ASP.NET Core Mvc ...
Microsoft Asp.net Model View Controller 1.1.0
Microsoft Asp.net Model View Controller 1.1.1
Microsoft Asp.net Model View Controller 1.1.2
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.0
Microsoft Microsoft.aspnetcore.mvc.apiexplorer 1.1.2
Microsoft Asp.net Model View Controller 1.0.0
Microsoft Asp.net Model View Controller 1.0.1
Microsoft Asp.net Model View Controller 1.0.2
Microsoft Microsoft.aspnetcore.mvc.dataannotations 1.0.2
Microsoft Microsoft.aspnetcore.mvc.dataannotations 1.0.3
Microsoft Microsoft.aspnetcore.mvc.dataannotations 1.1.0
Microsoft Microsoft.aspnetcore.mvc.dataannotations 1.1.1
Microsoft Microsoft.aspnetcore.mvc.formatters.xml 1.1.1
Microsoft Microsoft.aspnetcore.mvc.formatters.xml 1.1.2
Microsoft Microsoft.aspnetcore.mvc.localization 1.0.0
Microsoft Microsoft.aspnetcore.mvc.localization 1.0.1
Microsoft Microsoft.aspnetcore.mvc.razor.host 1.0.0
Microsoft Microsoft.aspnetcore.mvc.razor.host 1.0.1
Microsoft Microsoft.aspnetcore.mvc.razor.host 1.0.2
Microsoft Microsoft.aspnetcore.mvc.razor.host 1.0.3
Microsoft Microsoft.aspnetcore.mvc.razor.host 1.1.0
Microsoft Microsoft.aspnetcore.mvc.viewfeatures 1.0.3
1 Github repository
668
VMScore
CVE-2017-0249
An elevation of privilege vulnerability exists when the ASP.NET Core fails to properly sanitize web requests.
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.1.0
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.1.1
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.1.2
Microsoft Microsoft.aspnetcore.mvc.apiexplorer 1.0.0
Microsoft Microsoft.aspnetcore.mvc.apiexplorer 1.0.1
Microsoft Microsoft.aspnetcore.mvc.cors 1.0.0
Microsoft Microsoft.aspnetcore.mvc.cors 1.0.1
Microsoft Microsoft.aspnetcore.mvc.cors 1.0.2
Microsoft Microsoft.aspnetcore.mvc.cors 1.0.3
Microsoft Microsoft.aspnetcore.mvc.formatters.json 1.0.3
Microsoft Microsoft.aspnetcore.mvc.formatters.json 1.1.0
Microsoft Microsoft.aspnetcore.mvc.formatters.json 1.1.1
Microsoft Microsoft.aspnetcore.mvc.formatters.json 1.1.2
Microsoft Microsoft.aspnetcore.mvc.localization 1.1.2
Microsoft Microsoft.aspnetcore.mvc.razor 1.0.0
Microsoft Microsoft.aspnetcore.mvc.razor 1.0.1
Microsoft Microsoft.aspnetcore.mvc.razor 1.0.2
Microsoft Microsoft.aspnetcore.mvc.taghelpers 1.0.1
Microsoft Microsoft.aspnetcore.mvc.taghelpers 1.0.2
Microsoft Microsoft.aspnetcore.mvc.taghelpers 1.0.3
Microsoft Microsoft.aspnetcore.mvc.taghelpers 1.1.0
Microsoft Microsoft.aspnetcore.mvc.taghelpers 1.1.1
2 Github repositories
446
VMScore
CVE-2017-0256
A spoofing vulnerability exists when the ASP.NET Core fails to properly sanitize web requests.
Microsoft Asp.net Model View Controller 1.0.0
Microsoft Asp.net Model View Controller 1.0.2
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.0
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.2
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.1.0
Microsoft Microsoft.aspnetcore.mvc.apiexplorer 1.0.2
Microsoft Microsoft.aspnetcore.mvc.apiexplorer 1.1.0
Microsoft Asp.net Model View Controller 1.1.0
Microsoft Asp.net Model View Controller 1.1.2
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.1.1
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.1.2
Microsoft Microsoft.aspnetcore.mvc.apiexplorer 1.0.0
Microsoft Microsoft.aspnetcore.mvc.apiexplorer 1.0.1
Microsoft Microsoft.aspnetcore.mvc.cors 1.0.0
Microsoft Microsoft.aspnetcore.mvc.cors 1.0.1
Microsoft Microsoft.aspnetcore.mvc.cors 1.0.2
Microsoft Microsoft.aspnetcore.mvc.cors 1.0.3
Microsoft Microsoft.aspnetcore.mvc.formatters.json 1.0.3
Microsoft Microsoft.aspnetcore.mvc.formatters.json 1.1.0
Microsoft Microsoft.aspnetcore.mvc.formatters.json 1.1.1
Microsoft Microsoft.aspnetcore.mvc.formatters.json 1.1.2
Microsoft Microsoft.aspnetcore.mvc.localization 1.1.2
2 Github repositories
828
VMScore
CVE-2010-0807
Microsoft Internet Explorer 7 does not properly handle objects in memory, which allows remote malicious users to execute arbitrary code by accessing a deleted object, leading to memory corruption, aka "HTML Rendering Memory Corruption Vulnerability."
Microsoft Internet Explorer 7
Microsoft Windows 2003 Server
Microsoft Windows Server 2003
Microsoft Windows Xp
Microsoft Windows Xp -
Microsoft Windows Server 2008
Microsoft Windows Server 2008 -
Microsoft Windows Vista
Microsoft Windows Vista -
828
VMScore
CVE-2006-3877
Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac allows user-assisted malicious users to execute arbitrary code via an unspecified "crafted file," a different vulnerability than CVE-2...
Microsoft Excel 2003
Microsoft Excel Viewer 2003
Microsoft Office 2004
Microsoft Office Xp
Microsoft Powerpoint 2004
Microsoft Project 2000
Microsoft Visio 2003
Microsoft Word 2000
Microsoft Access 2000
Microsoft Frontpage 2000
Microsoft Frontpage 2002
Microsoft Onenote 2003
Microsoft Outlook 2000
Microsoft Outlook 2002
Microsoft Project 2002
Microsoft Project 2003
Microsoft Word 2002
Microsoft Word 2003
Microsoft Excel 2000
Microsoft Excel 2002
Microsoft Office 2000
Microsoft Office 2003
828
VMScore
CVE-2009-3674
Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote malicious users to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "Uninitialized Memory Cor...
Microsoft Internet Explorer 5.0.1
Microsoft Windows 2000
Microsoft Internet Explorer 6
Microsoft Windows Server 2003
Microsoft Windows Xp
Microsoft Windows Xp -
Microsoft Internet Explorer 7
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Internet Explorer 8
Microsoft Windows 7 -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »