Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft vulnerabilities and exploits
(subscribe to this query)
940
VMScore
CVE-2010-0806
Use-after-free vulnerability in the Peer Objects component (aka iepeers.dll) in Microsoft Internet Explorer 6, 6 SP1, and 7 allows remote malicious users to execute arbitrary code via vectors involving access to an invalid pointer after the deletion of an object, as exploited in ...
Microsoft Internet Explorer 7
Microsoft Windows 2003 Server
Microsoft Windows Server 2003
Microsoft Windows Xp
Microsoft Windows Xp -
Microsoft Windows Server 2008
Microsoft Windows Server 2008 -
Microsoft Windows Vista
Microsoft Internet Explorer 6
Microsoft Windows 2000
2 EDB exploits
12 Articles
828
VMScore
CVE-2010-0267
Microsoft Internet Explorer 6, 6 SP1, and 7 does not properly handle objects in memory, which allows remote malicious users to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "Uninitiali...
Microsoft Internet Explorer 7
Microsoft Windows 2003 Server
Microsoft Windows Server 2003
Microsoft Windows Xp
Microsoft Windows Xp -
Microsoft Windows Server 2008
Microsoft Windows Server 2008 -
Microsoft Windows Vista
Microsoft Internet Explorer 6
Microsoft Windows 2000
828
VMScore
CVE-2010-0492
Use-after-free vulnerability in mstime.dll in Microsoft Internet Explorer 8 allows remote malicious users to execute arbitrary code via vectors related to the TIME2 behavior, the CTimeAction object, and destruction of markup, leading to memory corruption, aka "HTML Object Me...
Microsoft Internet Explorer 8
Microsoft Internet Explorer 8.0.6001
Microsoft Windows 2003 Server
Microsoft Windows 7 -
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows Vista -
Microsoft Windows Xp
Microsoft Windows Xp -
828
VMScore
CVE-2007-0671
Unspecified vulnerability in Microsoft Excel 2000, XP, 2003, and 2004 for Mac, and possibly other Office products, allows remote user-assisted malicious users to execute arbitrary code via unknown attack vectors, as demonstrated by Exploit-MSExcel.h in targeted zero-day attacks.
Microsoft Access 2003
Microsoft Excel 2000
Microsoft Infopath 2003
Microsoft Office 2000
Microsoft Outlook 2003
Microsoft Powerpoint 2000
Microsoft Powerpoint 2002
Microsoft Publisher 2002
Microsoft Publisher 2003
Microsoft Excel 2004
Microsoft Excel 2002
Microsoft Excel 2003
Microsoft Office 2003
Microsoft Office 2004
Microsoft Powerpoint 2003
Microsoft Powerpoint 2004
Microsoft Visio 2002
Microsoft Visio 2003
Microsoft Access 2000
Microsoft Access 2002
Microsoft Frontpage 2002
Microsoft Frontpage 2003
828
VMScore
CVE-2010-0807
Microsoft Internet Explorer 7 does not properly handle objects in memory, which allows remote malicious users to execute arbitrary code by accessing a deleted object, leading to memory corruption, aka "HTML Rendering Memory Corruption Vulnerability."
Microsoft Internet Explorer 7
Microsoft Windows 2003 Server
Microsoft Windows Server 2003
Microsoft Windows Xp
Microsoft Windows Xp -
Microsoft Windows Server 2008
Microsoft Windows Server 2008 -
Microsoft Windows Vista
Microsoft Windows Vista -
668
VMScore
CVE-2017-0249
An elevation of privilege vulnerability exists when the ASP.NET Core fails to properly sanitize web requests.
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.1.0
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.1.1
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.1.2
Microsoft Microsoft.aspnetcore.mvc.apiexplorer 1.0.0
Microsoft Microsoft.aspnetcore.mvc.apiexplorer 1.0.1
Microsoft Microsoft.aspnetcore.mvc.cors 1.0.0
Microsoft Microsoft.aspnetcore.mvc.cors 1.0.1
Microsoft Microsoft.aspnetcore.mvc.cors 1.0.2
Microsoft Microsoft.aspnetcore.mvc.cors 1.0.3
Microsoft Microsoft.aspnetcore.mvc.formatters.json 1.0.3
Microsoft Microsoft.aspnetcore.mvc.formatters.json 1.1.0
Microsoft Microsoft.aspnetcore.mvc.formatters.json 1.1.1
Microsoft Microsoft.aspnetcore.mvc.formatters.json 1.1.2
Microsoft Microsoft.aspnetcore.mvc.localization 1.1.2
Microsoft Microsoft.aspnetcore.mvc.razor 1.0.0
Microsoft Microsoft.aspnetcore.mvc.razor 1.0.1
Microsoft Microsoft.aspnetcore.mvc.razor 1.0.2
Microsoft Microsoft.aspnetcore.mvc.taghelpers 1.0.1
Microsoft Microsoft.aspnetcore.mvc.taghelpers 1.0.2
Microsoft Microsoft.aspnetcore.mvc.taghelpers 1.0.3
Microsoft Microsoft.aspnetcore.mvc.taghelpers 1.1.0
Microsoft Microsoft.aspnetcore.mvc.taghelpers 1.1.1
2 Github repositories
446
VMScore
CVE-2017-0256
A spoofing vulnerability exists when the ASP.NET Core fails to properly sanitize web requests.
Microsoft Asp.net Model View Controller 1.0.0
Microsoft Asp.net Model View Controller 1.0.2
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.0
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.2
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.1.0
Microsoft Microsoft.aspnetcore.mvc.apiexplorer 1.0.2
Microsoft Microsoft.aspnetcore.mvc.apiexplorer 1.1.0
Microsoft Asp.net Model View Controller 1.1.0
Microsoft Asp.net Model View Controller 1.1.2
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.1.1
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.1.2
Microsoft Microsoft.aspnetcore.mvc.apiexplorer 1.0.0
Microsoft Microsoft.aspnetcore.mvc.apiexplorer 1.0.1
Microsoft Microsoft.aspnetcore.mvc.cors 1.0.0
Microsoft Microsoft.aspnetcore.mvc.cors 1.0.1
Microsoft Microsoft.aspnetcore.mvc.cors 1.0.2
Microsoft Microsoft.aspnetcore.mvc.cors 1.0.3
Microsoft Microsoft.aspnetcore.mvc.formatters.json 1.0.3
Microsoft Microsoft.aspnetcore.mvc.formatters.json 1.1.0
Microsoft Microsoft.aspnetcore.mvc.formatters.json 1.1.1
Microsoft Microsoft.aspnetcore.mvc.formatters.json 1.1.2
Microsoft Microsoft.aspnetcore.mvc.localization 1.1.2
2 Github repositories
445
VMScore
CVE-2017-0247
A denial of service vulnerability exists when the ASP.NET Core fails to properly validate web requests. NOTE: Microsoft has not commented on third-party claims that the issue is that the TextEncoder.EncodeCore function in the System.Text.Encodings.Web package in ASP.NET Core Mvc ...
Microsoft Asp.net Model View Controller 1.1.0
Microsoft Asp.net Model View Controller 1.1.1
Microsoft Asp.net Model View Controller 1.1.2
Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.0
Microsoft Microsoft.aspnetcore.mvc.apiexplorer 1.1.2
Microsoft Asp.net Model View Controller 1.0.0
Microsoft Asp.net Model View Controller 1.0.1
Microsoft Asp.net Model View Controller 1.0.2
Microsoft Microsoft.aspnetcore.mvc.dataannotations 1.0.2
Microsoft Microsoft.aspnetcore.mvc.dataannotations 1.0.3
Microsoft Microsoft.aspnetcore.mvc.dataannotations 1.1.0
Microsoft Microsoft.aspnetcore.mvc.dataannotations 1.1.1
Microsoft Microsoft.aspnetcore.mvc.formatters.xml 1.1.1
Microsoft Microsoft.aspnetcore.mvc.formatters.xml 1.1.2
Microsoft Microsoft.aspnetcore.mvc.localization 1.0.0
Microsoft Microsoft.aspnetcore.mvc.localization 1.0.1
Microsoft Microsoft.aspnetcore.mvc.razor.host 1.0.0
Microsoft Microsoft.aspnetcore.mvc.razor.host 1.0.1
Microsoft Microsoft.aspnetcore.mvc.razor.host 1.0.2
Microsoft Microsoft.aspnetcore.mvc.razor.host 1.0.3
Microsoft Microsoft.aspnetcore.mvc.razor.host 1.1.0
Microsoft Microsoft.aspnetcore.mvc.viewfeatures 1.0.3
1 Github repository
828
VMScore
CVE-2009-3671
Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote malicious users to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "Uninitialized Memory Cor...
Microsoft Internet Explorer 5.0.1
Microsoft Windows 2000
Microsoft Internet Explorer 6
Microsoft Windows Server 2003
Microsoft Windows Xp
Microsoft Windows Xp -
Microsoft Internet Explorer 7
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Internet Explorer 8
Microsoft Windows 7 -
828
VMScore
CVE-2009-3673
Microsoft Internet Explorer 7 and 8 does not properly handle objects in memory, which allows remote malicious users to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "Uninitialized Memo...
Microsoft Internet Explorer 5.0.1
Microsoft Windows 2000
Microsoft Internet Explorer 6
Microsoft Windows Server 2003
Microsoft Windows Xp
Microsoft Windows Xp -
Microsoft Internet Explorer 7
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Internet Explorer 8
Microsoft Windows 7 -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »