internet_explorer vulnerabilities and exploits

(subscribe to this query)

Microsoft Internet Explorer 6, 7, and 8 does not prevent rendering of cached content as HTML, which allows remote malicious users to access content from a different (1) domain or (2) zone via unspecified script code, aka "Cross-Domain Information Disclosure Vulnerability,&qu...

Microsoft Internet Explorer 6 Microsoft Internet Explorer 7 Microsoft Internet Explorer 8

Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows remote malicious users to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "HTML Element M...

Microsoft Internet Explorer 6 Microsoft Internet Explorer 7 Microsoft Internet Explorer 8

Microsoft Internet Explorer 6 through 8 does not properly handle objects in memory in certain circumstances involving use of Microsoft Word to read Word documents, which allows remote malicious users to execute arbitrary code by accessing an object that (1) was not properly initi...

Microsoft Internet Explorer 6 Microsoft Internet Explorer 7 Microsoft Internet Explorer 8

Unspecified vulnerability in Microsoft Internet Explorer 6 allows remote malicious users to execute arbitrary code via a crafted Cascading Style Sheets (CSS) tag that triggers memory corruption.

Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 6 Microsoft Internet Explorer 7.0

Microsoft Internet Explorer 5.01, 6, and 7 allows remote malicious users to execute arbitrary code by causing Internet Explorer to access an uninitialized or deleted object, related to prototype variables and table cells, aka "Uninitialized Memory Corruption Vulnerability.&q...

Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 6 Microsoft Internet Explorer 7.0

The setRequestHeader method of the XMLHttpRequest object in Microsoft Internet Explorer 5.01, 6, and 7 does not block dangerous HTTP request headers when certain 8-bit character sequences are appended to a header name, which allows remote malicious users to (1) conduct HTTP reque...

Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 6 Microsoft Internet Explorer 7

Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows remote malicious users to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "Uninitialized ...

Microsoft Internet Explorer 6 Microsoft Internet Explorer 7 Microsoft Internet Explorer 8

Use-after-free vulnerability in the ReleaseInterface function in MSHTML.DLL in Microsoft Internet Explorer 6, 7, and 8 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via vectors related to the DOM implementation and the Br...

Microsoft Internet Explorer 6 Microsoft Internet Explorer 7 Microsoft Internet Explorer 8

Microsoft Internet Explorer 6 and 7 does not properly determine the domain or security zone of origin of web script, which allows remote malicious users to bypass the intended cross-domain security policy, and execute arbitrary code or obtain sensitive information, via a crafted ...

Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 6 Microsoft Internet Explorer 7

The Web Proxy Auto-Discovery (WPAD) feature in Microsoft Internet Explorer 6 and 7, when a primary DNS suffix with three or more components is configured, resolves an unqualified wpad hostname in a second-level domain outside this configured DNS domain, which allows remote WPAD s...

Microsoft Internet Explorer 5.01 Microsoft Internet Explorer 6 Microsoft Internet Explorer 7

« PREV 1 2 3 4 5 6 7 8 9 10 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook