CVE-2011-0347
- EPSS 22.29%
- Veröffentlicht 07.01.2011 23:00:20
- Zuletzt bearbeitet 16.06.2026 23:27:13
Microsoft Internet Explorer on Windows XP allows remote attackers to trigger an incorrect GUI display and have unspecified other impact via vectors related to the DOM implementation, as demonstrated by cross_fuzz.
CVE-2010-3971
- EPSS 81.66%
- Veröffentlicht 22.12.2010 21:00:17
- Zuletzt bearbeitet 16.06.2026 23:23:55
Use-after-free vulnerability in the CSharedStyleSheet::Notify function in the Cascading Style Sheets (CSS) parser in mshtml.dll, as used in Microsoft Internet Explorer 6 through 8 and other products, allows remote attackers to execute arbitrary code ...
CVE-2010-3340
- EPSS 25.32%
- Veröffentlicht 16.12.2010 19:33:02
- Zuletzt bearbeitet 16.06.2026 23:22:37
Microsoft Internet Explorer 6 and 7 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka ...
CVE-2010-3342
- EPSS 13.62%
- Veröffentlicht 16.12.2010 19:33:02
- Zuletzt bearbeitet 16.06.2026 23:22:37
Microsoft Internet Explorer 6, 7, and 8 does not prevent rendering of cached content as HTML, which allows remote attackers to access content from a different (1) domain or (2) zone via unspecified script code, aka "Cross-Domain Information Disclosur...
CVE-2010-3343
- EPSS 28.89%
- Veröffentlicht 16.12.2010 19:33:02
- Zuletzt bearbeitet 16.06.2026 23:22:37
Microsoft Internet Explorer 6 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "HTML ...
CVE-2010-3345
- EPSS 28.89%
- Veröffentlicht 16.12.2010 19:33:02
- Zuletzt bearbeitet 16.06.2026 23:22:37
Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "HTML ...
CVE-2010-3346
- EPSS 28.89%
- Veröffentlicht 16.12.2010 19:33:02
- Zuletzt bearbeitet 16.06.2026 23:22:37
Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, ...
CVE-2010-3348
- EPSS 13.62%
- Veröffentlicht 16.12.2010 19:33:02
- Zuletzt bearbeitet 16.06.2026 23:22:37
Microsoft Internet Explorer 6, 7, and 8 does not prevent rendering of cached content as HTML, which allows remote attackers to access content from a different (1) domain or (2) zone via unspecified script code, aka "Cross-Domain Information Disclosur...
CVE-2010-3962
- EPSS 96.89%
- Veröffentlicht 05.11.2010 17:00:02
- Zuletzt bearbeitet 16.06.2026 23:23:53
Use-after-free vulnerability in Microsoft Internet Explorer 6, 7, and 8 allows remote attackers to execute arbitrary code via vectors related to Cascading Style Sheets (CSS) token sequences and the clip attribute, aka an "invalid flag reference" issu...
CVE-2010-3243
- EPSS 15.72%
- Veröffentlicht 13.10.2010 19:00:46
- Zuletzt bearbeitet 16.06.2026 23:22:26
Cross-site scripting (XSS) vulnerability in the toStaticHTML function in Microsoft Internet Explorer 8, and the SafeHTML function in Microsoft Windows SharePoint Services 3.0 SP2 and Office SharePoint Server 2007 SP2, allows remote attackers to injec...