Microsoft

Internet Explorer

1637 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2001-1539

  • EPSS 17.16%
  • Veröffentlicht 31.12.2001 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Stack consumption vulnerability in Internet Explorer The JavaScript settimeout function in Internet Explorer allows remote attackers to cause a denial of service (crash) via the JavaScript settimeout function. NOTE: the vendor could not reproduce th...

5

CVE-2001-1219

  • EPSS 5.22%
  • Veröffentlicht 20.12.2001 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Microsoft Internet Explorer 6.0 and earlier allows malicious website operators to cause a denial of service (client crash) via JavaScript that continually refreshes the window via self.location.

7.5

CVE-2001-0727

  • EPSS 50.66%
  • Veröffentlicht 14.12.2001 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Internet Explorer 6.0 allows remote attackers to execute arbitrary code by modifying the Content-Disposition and Content-Type header fields in a way that causes Internet Explorer to believe that the file is safe to open without prompting the user, ak...

5

CVE-2001-0874

  • EPSS 31.69%
  • Veröffentlicht 13.12.2001 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Internet Explorer 5.5 and 6.0 allow remote attackers to read certain files via HTML that passes information from a frame in the client's domain to a frame in the web site's domain, a variant of the "Frame Domain Verification" vulnerability.

6.4

CVE-2001-0722

Exploit
  • EPSS 52.78%
  • Veröffentlicht 06.12.2001 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Internet Explorer 5.5 and 6.0 allows remote attackers to read and modify user cookies via Javascript in an about: URL, aka the "First Cookie Handling Vulnerability."

2.6

CVE-2001-0807

Exploit
  • EPSS 9.16%
  • Veröffentlicht 06.12.2001 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Internet Explorer 5.0, and possibly other versions, may allow remote attackers (malicious web pages) to read known text files from a client's hard drive via a SCRIPT tag with a SRC value that points to the text file.

7.5

CVE-2001-0875

Exploit
  • EPSS 22.71%
  • Veröffentlicht 26.11.2001 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Internet Explorer 5.5 and 6.0 allows remote attackers to cause the File Download dialogue box to misrepresent the name of the file in the dialogue in a way that could fool users into thinking that the file type is safe to download.

5.1

CVE-2001-0919

  • EPSS 3.29%
  • Veröffentlicht 26.11.2001 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Internet Explorer 5.50.4134.0100 on Windows ME with "Prompt to allow cookies to be stored on your machine" enabled does not warn a user when a cookie is set using Javascript.

5

CVE-2001-0904

  • EPSS 17.86%
  • Veröffentlicht 20.11.2001 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Internet Explorer 5.5 and 6 with the Q312461 (MS01-055) patch modifies the HTTP_USER_AGENT (UserAgent) information that indicates that the patch has been installed, which could allow remote malicious web sites to more easily identify and exploit vuln...

6.4

CVE-2001-0723

Exploit
  • EPSS 11.14%
  • Veröffentlicht 14.11.2001 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Internet Explorer 5.5 and 6.0 allows remote attackers to read and modify user cookies via Javascript, aka the "Second Cookie Handling Vulnerability."