Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft ie vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-4560
Internet Explorer 6 on Windows XP SP2 allows remote malicious users to execute arbitrary JavaScript in the context of the browser's session with an arbitrary intranet web server, by hosting script on an Internet web server that can be made inaccessible by the attacker and th...
Microsoft Ie 6
NA
CVE-2004-1104
Microsoft Internet Explorer 6.0 SP2 allows remote malicious users to spoof a legitimate URL in the status bar and conduct a phishing attack via a web page that contains a BASE element that points to the legitimate site, followed by an anchor (a) element with an empty "href&q...
Microsoft Ie 6.0
1 EDB exploit
NA
CVE-2004-0985
Internet Explorer 6.x on Windows XP SP2 allows remote malicious users to execute arbitrary code, as demonstrated using a document with a draggable file type such as .xml, .doc, .py, .cdf, .css, .pdf, or .ppt, and using ADODB.Connection and ADODB.recordset to write to a .hta file ...
Microsoft Ie 6.0
NA
CVE-2006-5544
Visual truncation vulnerability in Microsoft Internet Explorer 7 allows remote malicious users to spoof the address bar and possibly conduct phishing attacks via a malicious URL containing non-breaking spaces (%A0), which causes the address bar to omit some characters from the UR...
Microsoft Ie 7.0
NA
CVE-2006-5805
Microsoft Internet Explorer 7 allows remote malicious users to cause a security certificate from a secure web site to appear invalid via a link to res://ieframe.dll/invalidcert.htm with the target site as an argument, which displays the site's URL in the address bar but caus...
Microsoft Ie 7.0
NA
CVE-2006-3910
Internet Explorer 6 on Windows XP SP2, when Outlook is installed, allows remote malicious users to cause a denial of service (crash) by calling the NewDefaultItem function of an OVCtl (OVCtl.OVCtl.1) ActiveX object, which triggers a null dereference.
Microsoft Ie 6.0
1 EDB exploit
NA
CVE-2006-4777
Heap-based buffer overflow in the DirectAnimation Path Control (DirectAnimation.PathControl) COM object (daxctle.ocx) for Internet Explorer 6.0 SP1, on Chinese and possibly other Windows distributions, allows remote malicious users to execute arbitrary code via unknown manipulati...
Microsoft Ie 6.0
2 EDB exploits
1 Github repository
NA
CVE-2004-0844
Internet Explorer 6 on Double Byte Character Set (DBCS) systems allows remote malicious users to alter displayed address bars and spoof web pages via a URL containing special characters, facilitating phishing attacks, aka the "Address Bar Spoofing on Double Byte Character Se...
Microsoft Ie 6
NA
CVE-2004-0869
Internet Explorer does not prevent cookies that are sent over an insecure channel (HTTP) from also being sent over a secure channel (HTTPS/SSL) in the same domain, which could allow remote malicious users to steal cookies and conduct unauthorized activities, aka "Cross Secur...
Microsoft Ie 6
NA
CVE-2005-4679
Internet Explorer 6 for Windows XP Service Pack 2 allows remote malicious users to spoof the URL in the status bar via the title in an image in a link to a trusted site within a form to the malicious site.
Microsoft Ie 6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »