Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft windows explorer vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2007-1749
Integer underflow in the CDownloadSink class code in the Vector Markup Language (VML) component (VGX.DLL), as used in Internet Explorer 5.01, 6, and 7 allows remote malicious users to execute arbitrary code via compressed content with an invalid buffer size, which triggers a heap...
Microsoft Internet Explorer 7
Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 6
1 EDB exploit
7.5
CVSSv2
CVE-2005-0416
The Windows Animated Cursor (ANI) capability in Windows NT, Windows 2000 through SP4, Windows XP through SP1, and Windows 2003 allows remote malicious users to execute arbitrary code via the AnimationHeaderBlock length field, which leads to a stack-based buffer overflow.
Microsoft Windows 2000
Microsoft Windows 2003 Server Enterprise 64-bit
Microsoft Windows 2003 Server Web
Microsoft Windows 98
Microsoft Windows 2003 Server R2
Microsoft Windows 2003 Server Standard
Microsoft Windows Nt 4.0
Microsoft Windows 2003 Server Enterprise
Microsoft Windows 98se
Microsoft Windows Me
Microsoft Windows Xp
2 EDB exploits
9.3
CVSSv2
CVE-2013-3163
Microsoft Internet Explorer 8 through 10 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-314...
Microsoft Internet Explorer 10
Microsoft Internet Explorer 8
Microsoft Internet Explorer 9
1 EDB exploit
1 Article
7.6
CVSSv2
CVE-2017-0222
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0226.
Microsoft Internet Explorer 10
Microsoft Internet Explorer 11
1 Article
2.6
CVSSv2
CVE-2016-3388
Microsoft Internet Explorer 10 and 11 and Microsoft Edge do not properly restrict access to private namespaces, which allows remote malicious users to gain privileges via unspecified vectors, aka "Microsoft Browser Elevation of Privilege Vulnerability," a different vuln...
Microsoft Internet Explorer 10
Microsoft Edge
Microsoft Internet Explorer 11
1 EDB exploit
6.8
CVSSv2
CVE-2016-3387
Microsoft Internet Explorer 10 and 11 and Microsoft Edge do not properly restrict access to private namespaces, which allows remote malicious users to gain privileges via unspecified vectors, aka "Microsoft Browser Elevation of Privilege Vulnerability," a different vuln...
Microsoft Internet Explorer 11
Microsoft Edge -
Microsoft Internet Explorer 10
1 EDB exploit
5
CVSSv2
CVE-2001-1410
Internet Explorer 6 and previous versions allows remote malicious users to create chromeless windows using the Javascript window.createPopup method, which could allow malicious users to simulate a victim's display and conduct unauthorized activities or steal sensitive data v...
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0
1 EDB exploit
5
CVSSv2
CVE-2005-1191
The Web View DLL (webvw.dll), as used in Windows Explorer on Windows 2000 systems, does not properly filter an apostrophe ("'") in the author name in a document, which allows malicious users to execute arbitrary script via extra attributes when Web View constructs ...
Microsoft Windows 2000
Microsoft Windows 98
Microsoft Windows 98se
Microsoft Windows Me
1 EDB exploit
5.1
CVSSv2
CVE-2006-2094
Microsoft Internet Explorer before Windows XP Service Pack 2 and Windows Server 2003 Service Pack 1, when Prompt is configured in Security Settings, uses modal dialogs to verify that a user wishes to run an ActiveX control or perform other risky actions, which allows user-assiste...
Microsoft Ie 5.0.1
Microsoft Ie 5.0
Microsoft Internet Explorer 5.5
Microsoft Ie 6.0
Microsoft Internet Explorer 7.0
Microsoft Internet Explorer 5.0.1
Microsoft Internet Explorer 6.0
Microsoft Internet Explorer 5.0
Microsoft Ie 5
1 EDB exploit
5
CVSSv2
CVE-2002-1984
Microsoft Internet Explorer 5.0.1 up to and including 6.0 on Windows 2000 or Windows XP allows remote malicious users to cause a denial of service (crash) via an OBJECT tag that contains a crafted CLASSID (CLSID) value of "CLSID:00022613-0000-0000-C000-000000000046".
Microsoft Internet Explorer 5.0.1
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »