CVE-2002-0188
- EPSS 16.35%
- Veröffentlicht 29.05.2002 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:56:57
Microsoft Internet Explorer 5.01 and 6.0 allow remote attackers to execute arbitrary code via malformed Content-Disposition and Content-Type header fields that cause the application for the spoofed file type to pass the file back to the operating sys...
CVE-2002-0189
- EPSS 13.97%
- Veröffentlicht 29.05.2002 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:56:57
Cross-site scripting vulnerability in Internet Explorer 6.0 allows remote attackers to execute scripts in the Local Computer zone via a URL that exploits a local HTML resource file, aka the "Cross-Site Scripting in Local HTML Resource" vulnerability.
CVE-2002-0190
- EPSS 24%
- Veröffentlicht 29.05.2002 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:56:58
Microsoft Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to execute arbitrary code under fewer security restrictions via a malformed web page that requires NetBIOS connectivity, aka "Zone Spoofing through Malformed Web Page" vulnerabilit...
- EPSS 29.69%
- Veröffentlicht 29.05.2002 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:56:58
Microsoft Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to view arbitrary files that contain the "{" character via script containing the cssText property of the stylesheet object, aka "Local Information Disclosure through HTML Object" v...
CVE-2002-0193
- EPSS 33.34%
- Veröffentlicht 29.05.2002 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:56:58
Microsoft Internet Explorer 5.01 and 6.0 allow remote attackers to execute arbitrary code via malformed Content-Disposition and Content-Type header fields that cause the application for the spoofed file type to pass the file back to the operating sys...
CVE-2002-0242
- EPSS 11.38%
- Veröffentlicht 29.05.2002 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:57:03
Cross-site scripting vulnerability in Internet Explorer 6 earlier allows remote attackers to execute arbitrary script via an Extended HTML Form, whose output from the remote server is not properly cleansed.
CVE-2002-0269
- EPSS 11.47%
- Veröffentlicht 29.05.2002 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:57:06
Internet Explorer 5.x and 6 interprets an object as an HTML document even when its MIME Content-Type is text/plain, which could allow remote attackers to execute arbitrary script in documents that the user does not expect, possibly through web applic...
CVE-2002-0078
- EPSS 21.95%
- Veröffentlicht 29.03.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:56:43
The zone determination function in Microsoft Internet Explorer 5.5 and 6.0 allows remote attackers to run scripts in the Local Computer zone by embedding the script in a cookie, aka the "Cookie-based Script Execution" vulnerability.
- EPSS 12.41%
- Veröffentlicht 25.03.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:56:46
Microsoft Internet Explorer 6.0 and earlier allows local users to cause a denial of service via an infinite loop for modeless dialogs showModelessDialog, which causes CPU usage while the focus for the dialog is not released.
- EPSS 7.7%
- Veröffentlicht 25.03.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:56:51
Microsoft Internet Explorer 5.5 on Windows 98 allows remote web pages to cause a denial of service (hang) via extremely long values for form fields such as INPUT and TEXTAREA, which can be automatically filled via Javascript.