Filters
Microsoft Internet ExplorerThe JavaScript implementation in Microsoft Internet Explorer 8.0 and earlier does not properly restr…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet ExplorerMicrosoft Internet Explorer 6.0.2900.2180 and earlier allows remote attackers to cause a denial of s…
First published (updated )
Microsoft Internet ExplorerMicrosoft Internet Explorer before 8 displays a cached certificate for a (1) 4xx or (2) 5xx CONNECT …
5.8
First published (updated )
Microsoft Internet ExplorerMicrosoft Internet Explorer before 8 uses the HTTP Host header to determine the context of a documen…
5.8
First published (updated )
Microsoft Internet ExplorerMicrosoft Internet Explorer 4.0 through 7 allows remote attackers to determine the existence of loca…
4.3
First published (updated )
Microsoft Internet Explorerwininet.dll in Microsoft Internet Explorer 6.0 SP2 and earlier allows remote attackers to cause a de…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Explorerjscript.dll in Microsoft Internet Explorer 6.0 SP1 and earlier allows remote attackers to cause a de…
First published (updated )
Microsoft OutlookUnknown versions of Internet Explorer and Outlook allow remote attackers to spoof a legitimate URL i…
First published (updated )
Microsoft Internet ExplorerInternet Explorer 5.01 through 6 SP1 allows remote attackers to bypass zone restrictions via a javas…
9.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet ExplorerThe download function of Internet Explorer 6 SP1 allows remote attackers to obtain the cache directo…
First published (updated )
Microsoft Internet ExplorerInternet Explorer 5.01 through 6 SP1 allows remote attackers to direct drag and drop behaviors and o…
10
First published (updated )
Microsoft Internet ExplorerCertain versions of Internet Explorer 5 and 6, in certain Windows environments, allow remote attacke…
First published (updated )
Microsoft Internet ExplorerMicrosoft Internet Explorer 6.0 and possibly others allows remote attackers to upload arbitrary file…
6.4
First published (updated )
Microsoft Internet ExplorerInternet Explorer 5.0, 5.0.1 and 5.5 with JavaScript execution enabled allows remote attackers to de…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet ExplorerMicrosoft Internet Explorer 5.0, 5.01, and 5.5 allows remote attackers to monitor the contents of th…
First published (updated )
Microsoft Internet ExplorerMicrosoft Internet Explorer 5.0 through 6.0 allows remote attackers to cause a denial of service (cr…
First published (updated )
Microsoft Windows NTThe (1) CertGetCertificateChain, (2) CertVerifyCertificateChainPolicy, and (3) WinVerifyTrust APIs w…
7.5
First published (updated )
Microsoft Internet ExplorerInternet Explorer 4.0 and later allows remote attackers to read arbitrary files via a web page that …
6.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet ExplorerInternet Explorer 5, 5.6, and 6 allows remote attackers to bypass cookie privacy settings and store …
7.5
First published (updated )
Microsoft Internet ExplorerInternet Explorer 5.0 through 6.0 allows remote attackers to determine the existence of files on the…
First published (updated )
Microsoft Internet ExplorerCross-site scripting vulnerability in Internet Explorer 6.0 allows remote attackers to execute scrip…
7.5
First published (updated )
Microsoft Internet ExplorerInternet Explorer 5.x and 6 interprets an object as an HTML document even when its MIME Content-Type…
7.5
First published (updated )
Microsoft Internet ExplorerInternet Explorer 5.0, and possibly other versions, may allow remote attackers (malicious web pages)…
2.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet ExplorerThe rendering engine in Internet Explorer determines the MIME type independently of the type that is…
7.5
First published (updated )
Microsoft Internet ExplorerMicrosoft Internet Explorer 5.0 through 6.0 allows attackers to cause a denial of service (browser c…
2.6
First published (updated )
Microsoft Outlook ExpressInternet Explorer 5.0 and 5.5, and Outlook Express 5.0 and 5.5, allow remote attackers to execute sc…
7.5
First published (updated )
Microsoft Internet ExplorerA function in Internet Explorer 5.0 through 5.5 does not properly verify the domain of a frame withi…
2.6
First published (updated )
Microsoft Internet ExplorerInternet Explorer 5.0 through 5.5 allows remote attackers to read arbitrary files from the client vi…
2.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet ExplorerThe ActiveX control for invoking a scriptlet in Internet Explorer 5.0 through 5.5 renders arbitrary …
2.6
First published (updated )
Microsoft Internet ExplorerInternet Explorer before 5.5 forwards cached user credentials for a secure web site to insecure page…
7.5
First published (updated )
Microsoft Internet ExplorerThe ActiveX control for invoking a scriptlet in Internet Explorer 4.x and 5.x renders arbitrary file…
2.6
First published (updated )
Microsoft Internet ExplorerThe IFRAME of the WebBrowser control in Internet Explorer 5.01 allows a remote attacker to violate t…
2.6
First published (updated )
Microsoft Internet ExplorerInternet Explorer 4.x and 5.x does not properly verify the domain of a frame within a browser windo…
5.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet ExplorerInternet Explorer 4.0 and 5.0 allows a malicious web site to obtain client cookies from another doma…
2.6
First published (updated )
Microsoft Internet ExplorerInternet Explorer 5.01 allows remote attackers to bypass the cross frame security policy via a malic…
2.6
First published (updated )
Microsoft Internet ExplorerThe window.showHelp() method in Internet Explorer 5.x does not restrict HTML help files (.chm) to be…
5.1
First published (updated )
Microsoft Internet ExplorerInternet Explorer 4.x and 5.x allows remote web servers to access files on the client that are outsi…
5.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet ExplorerInternet Explorer 5 does not modify the security zone for a document that is being loaded into a win…
10
First published (updated )
Microsoft Internet ExplorerInternet Explorer 5.0 and 5.01 allows remote attackers to bypass the cross frame security policy and…
2.6
First published (updated )
Microsoft Internet ExplorerInternet Explorer 5.01 and earlier allows a remote attacker to create a reference to a client window…
5.1
First published (updated )
Microsoft Internet ExplorerInternet Explorer 5 allows a remote attacker to modify the IE client's proxy configuration via a mal…
First published (updated )
Microsoft Internet ExplorerInternet Explorer allows remote attackers to read files by redirecting data to a Javascript applet.
2.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.