Microsoft

Internet Explorer

1637 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
2.6

CVE-2006-1992

Exploit
  • EPSS 48.62%
  • Veröffentlicht 25.04.2006 01:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

mshtml.dll 6.00.2900.2873, as used in Microsoft Internet Explorer, allows remote attackers to cause a denial of service (crash) via nested OBJECT tags, which trigger invalid pointer dereferences including NULL dereferences. NOTE: the possibility of ...

7.5

CVE-2006-1185

  • EPSS 63.99%
  • Veröffentlicht 11.04.2006 23:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Unspecified vulnerability in Microsoft Internet Explorer 5.01 through 6 allows remote attackers to execute arbitrary code via certain invalid HTML that causes memory corruption.

10

CVE-2006-1186

  • EPSS 74.82%
  • Veröffentlicht 11.04.2006 23:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Microsoft Internet Explorer 5.01 through 6 allows remote attackers to execute arbitrary code via by instantiating the (1) Mdt2gddr.dll, (2) Mdt2dd.dll, and (3) Mdt2gddo.dll COM objects as ActiveX controls, which leads to memory corruption.

7.5

CVE-2006-1188

  • EPSS 63.99%
  • Veröffentlicht 11.04.2006 23:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Microsoft Internet Explorer 5.01 through 6 allows remote attackers to execute arbitrary code via HTML elements with a certain crafted tag, which leads to memory corruption.

10

CVE-2006-1189

  • EPSS 54.02%
  • Veröffentlicht 11.04.2006 23:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Buffer overflow in URLMON.DLL in Microsoft Internet Explorer 5.01 through 6 allows remote attackers to execute arbitrary code via a crafted URL with an International Domain Name (IDN) using double-byte character sets (DBCS), aka the "Double Byte Char...

10

CVE-2006-1190

  • EPSS 78.38%
  • Veröffentlicht 11.04.2006 23:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Microsoft Internet Explorer 5.01 through 6 does not always return the correct IOleClientSite information when dynamically creating an embedded object, which could cause Internet Explorer to run the object in the wrong security context or zone, and al...

4

CVE-2006-1191

  • EPSS 50.28%
  • Veröffentlicht 11.04.2006 23:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Microsoft Internet Explorer 5.01 through 6 does not always correctly identify the domain that is associated with a browser window, which allows remote attackers to obtain sensitive cross-domain information and spoof sites by running script after the ...

2.6

CVE-2006-1192

  • EPSS 30.14%
  • Veröffentlicht 11.04.2006 23:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Microsoft Internet Explorer 5.01 through 6 allows remote attackers to conduct phishing attacks by spoofing the address bar and other parts of the trust UI via unknown methods that allow "window content to persist" after the user has navigated to anot...

4.3

CVE-2006-1626

Exploit
  • EPSS 52.3%
  • Veröffentlicht 05.04.2006 10:04:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Internet Explorer 6 for Windows XP SP2 and earlier allows remote attackers to spoof the address bar and possibly conduct phishing attacks by re-opening the window to a malicious Shockwave Flash application, then changing the window location back to a...

7.5

CVE-2006-1388

  • EPSS 67.46%
  • Veröffentlicht 24.03.2006 20:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Unspecified vulnerability in Microsoft Internet Explorer 6.0 allows remote attackers to execute HTA files via unknown vectors.