CVE-2003-0113
- EPSS 39.37%
- Veröffentlicht 12.05.2003 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:01:34
Buffer overflow in URLMON.DLL in Microsoft Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to execute arbitrary code via an HTTP response containing long values in (1) Content-type and (2) Content-encoding fields.
- EPSS 14.62%
- Veröffentlicht 12.05.2003 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:01:34
The file upload control in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to automatically upload files from the local system via a web page containing a script to upload the files.
CVE-2003-0115
- EPSS 11.58%
- Veröffentlicht 12.05.2003 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:01:34
Microsoft Internet Explorer 5.01, 5.5 and 6.0 does not properly check parameters that are passed during third party rendering, which could allow remote attackers to execute arbitrary web script, aka the "Third Party Plugin Rendering" vulnerability, a...
- EPSS 25.25%
- Veröffentlicht 12.05.2003 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:01:34
Microsoft Internet Explorer 5.01, 5.5 and 6.0 does not properly check the Cascading Style Sheet input parameter for Modal dialogs, which allows remote attackers to read files on the local system via a web page containing script that creates a dialog ...
CVE-2003-0233
- EPSS 18.89%
- Veröffentlicht 12.05.2003 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:01:48
Heap-based buffer overflow in plugin.ocx for Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to execute arbitrary code via the Load() method, a different vulnerability than CVE-2003-0115.
CVE-2003-1326
- EPSS 16.33%
- Veröffentlicht 19.02.2003 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:03:56
Microsoft Internet Explorer 5.5 and 6.0 allows remote attackers to bypass the cross-domain security model to run malicious script or arbitrary programs via dialog boxes, aka "Improper Cross Domain Security Validation with dialog box."
CVE-2003-1328
- EPSS 38.94%
- Veröffentlicht 19.02.2003 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:03:56
The showHelp() function in Microsoft Internet Explorer 5.01, 5.5, and 6.0 supports certain types of pluggable protocols that allow remote attackers to bypass the cross-domain security model and execute arbitrary code, aka "Improper Cross Domain Secur...
CVE-2002-1670
- EPSS 1.35%
- Veröffentlicht 31.12.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:59:45
Microsoft Windows XP Professional upgrade edition overwrites previously installed patches for Internet Explorer 6.0, leaving Internet Explorer unpatched.
- EPSS 12.11%
- Veröffentlicht 31.12.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:59:45
Microsoft Internet Explorer 5.0, 5.01, and 5.5 allows remote attackers to monitor the contents of the clipboard via the getData method of the clipboardData object.
- EPSS 17.47%
- Veröffentlicht 31.12.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:59:47
The browser history feature in Microsoft Internet Explorer 5.5 through 6.0 allows remote attackers to execute arbitrary script as other users and steal authentication information via cookies by injecting JavaScript into the URL, which is executed whe...