Microsoft

Internet Explorer

1637 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 16.35%
  • Veröffentlicht 29.05.2002 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:56:57

Microsoft Internet Explorer 5.01 and 6.0 allow remote attackers to execute arbitrary code via malformed Content-Disposition and Content-Type header fields that cause the application for the spoofed file type to pass the file back to the operating sys...

  • EPSS 13.97%
  • Veröffentlicht 29.05.2002 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:56:57

Cross-site scripting vulnerability in Internet Explorer 6.0 allows remote attackers to execute scripts in the Local Computer zone via a URL that exploits a local HTML resource file, aka the "Cross-Site Scripting in Local HTML Resource" vulnerability.

  • EPSS 24%
  • Veröffentlicht 29.05.2002 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:56:58

Microsoft Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to execute arbitrary code under fewer security restrictions via a malformed web page that requires NetBIOS connectivity, aka "Zone Spoofing through Malformed Web Page" vulnerabilit...

  • EPSS 29.69%
  • Veröffentlicht 29.05.2002 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:56:58

Microsoft Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to view arbitrary files that contain the "{" character via script containing the cssText property of the stylesheet object, aka "Local Information Disclosure through HTML Object" v...

  • EPSS 33.34%
  • Veröffentlicht 29.05.2002 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:56:58

Microsoft Internet Explorer 5.01 and 6.0 allow remote attackers to execute arbitrary code via malformed Content-Disposition and Content-Type header fields that cause the application for the spoofed file type to pass the file back to the operating sys...

  • EPSS 11.38%
  • Veröffentlicht 29.05.2002 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:57:03

Cross-site scripting vulnerability in Internet Explorer 6 earlier allows remote attackers to execute arbitrary script via an Extended HTML Form, whose output from the remote server is not properly cleansed.

  • EPSS 11.47%
  • Veröffentlicht 29.05.2002 04:00:00
  • Zuletzt bearbeitet 16.06.2026 21:57:06

Internet Explorer 5.x and 6 interprets an object as an HTML document even when its MIME Content-Type is text/plain, which could allow remote attackers to execute arbitrary script in documents that the user does not expect, possibly through web applic...

  • EPSS 21.95%
  • Veröffentlicht 29.03.2002 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:56:43

The zone determination function in Microsoft Internet Explorer 5.5 and 6.0 allows remote attackers to run scripts in the Local Computer zone by embedding the script in a cookie, aka the "Cookie-based Script Execution" vulnerability.

  • EPSS 12.41%
  • Veröffentlicht 25.03.2002 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:56:46

Microsoft Internet Explorer 6.0 and earlier allows local users to cause a denial of service via an infinite loop for modeless dialogs showModelessDialog, which causes CPU usage while the focus for the dialog is not released.

  • EPSS 7.7%
  • Veröffentlicht 25.03.2002 05:00:00
  • Zuletzt bearbeitet 16.06.2026 21:56:51

Microsoft Internet Explorer 5.5 on Windows 98 allows remote web pages to cause a denial of service (hang) via extremely long values for form fields such as INPUT and TEXTAREA, which can be automatically filled via Javascript.