Microsoft

Internet Explorer

1637 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2008-3012

  • EPSS 70.56%
  • Veröffentlicht 11.09.2008 01:11:47
  • Zuletzt bearbeitet 09.04.2025 00:30:58

gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint ...

9.3

CVE-2008-3013

  • EPSS 71.54%
  • Veröffentlicht 11.09.2008 01:11:47
  • Zuletzt bearbeitet 09.04.2025 00:30:58

gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint ...

9.3

CVE-2008-3014

  • EPSS 75.59%
  • Veröffentlicht 11.09.2008 01:11:47
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Buffer overflow in gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 20...

9.3

CVE-2007-5348

  • EPSS 82.84%
  • Veröffentlicht 11.09.2008 01:01:19
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerP...

9.3

CVE-2008-2254

  • EPSS 55.72%
  • Veröffentlicht 13.08.2008 12:42:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Microsoft Internet Explorer 6 and 7 accesses uninitialized memory, which allows remote attackers to cause a denial of service (crash) and execute arbitrary code via unknown vectors, aka "HTML Object Memory Corruption Vulnerability."

9.3

CVE-2008-2255

  • EPSS 57.63%
  • Veröffentlicht 13.08.2008 12:42:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Microsoft Internet Explorer 5.01, 6, and 7 accesses uninitialized memory, which allows remote attackers to cause a denial of service (crash) and execute arbitrary code via unknown vectors, a different vulnerability than CVE-2008-2254, aka "HTML Objec...

9.3

CVE-2008-2256

  • EPSS 55.72%
  • Veröffentlicht 13.08.2008 12:42:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Microsoft Internet Explorer 5.01, 6, and 7 does not properly handle objects that have been incorrectly initialized or deleted, which allows remote attackers to cause a denial of service (crash) and execute arbitrary code via unknown vectors, aka "Uni...

9.3

CVE-2008-2257

  • EPSS 67.87%
  • Veröffentlicht 13.08.2008 12:42:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Microsoft Internet Explorer 5.01, 6, and 7 accesses uninitialized memory in certain conditions, which allows remote attackers to cause a denial of service (crash) and execute arbitrary code via vectors related to a document object "appended in a spec...

9.3

CVE-2008-2258

  • EPSS 66.47%
  • Veröffentlicht 13.08.2008 12:42:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Microsoft Internet Explorer 5.01, 6, and 7 accesses uninitialized memory in certain conditions, which allows remote attackers to cause a denial of service (crash) and execute arbitrary code via vectors related to a document object "appended in a spec...

9.3

CVE-2008-2259

  • EPSS 54.11%
  • Veröffentlicht 13.08.2008 12:42:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Microsoft Internet Explorer 6 and 7 does not perform proper "argument validation" during print preview, which allows remote attackers to execute arbitrary code via unknown vectors, aka "HTML Component Handling Vulnerability."