Microsoft

Ie

201 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2006-3450

  • EPSS 63.79%
  • Published 08.08.2006 23:04:00
  • Last modified 03.04.2025 01:03:51

Microsoft Internet Explorer 6 allows remote attackers to execute arbitrary code by using the document.getElementByID Javascript function to access crafted Cascading Style Sheet (CSS) elements, and possibly other unspecified vectors involving certain ...

7.5

CVE-2006-3451

  • EPSS 64.17%
  • Published 08.08.2006 23:04:00
  • Last modified 03.04.2025 01:03:51

Microsoft Internet Explorer 5 SP4 and 6 do not properly garbage collect when "multiple imports are used on a styleSheets collection" to construct a chain of Cascading Style Sheets (CSS), which allows remote attackers to execute arbitrary code via uns...

5.1

CVE-2006-3637

  • EPSS 77.25%
  • Published 08.08.2006 23:04:00
  • Last modified 03.04.2025 01:03:51

Microsoft Internet Explorer 5.01 SP4 and 6 does not properly handle various HTML layout component combinations, which allows user-assisted remote attackers to execute arbitrary code via a crafted HTML file that leads to memory corruption, aka "HTML R...

7.5

CVE-2006-3638

  • EPSS 64.56%
  • Published 08.08.2006 23:04:00
  • Last modified 03.04.2025 01:03:51

Microsoft Internet Explorer 5.01 and 6 does not properly handle uninitialized COM objects, which allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code, as demonstrated by the Nth function in the ...

2.6

CVE-2006-3943

Exploit
  • EPSS 38.26%
  • Published 31.07.2006 23:04:00
  • Last modified 03.04.2025 01:03:51

Stack-based buffer overflow in NDFXArtEffects in Microsoft Internet Explorer 6 on Windows XP SP2 allows remote attackers to cause a denial of service (crash) via long (1) RGBExtraColor, (2) RGBForeColor, and (3) RGBBackColor properties.

5

CVE-2006-3944

Exploit
  • EPSS 43.18%
  • Published 31.07.2006 23:04:00
  • Last modified 03.04.2025 01:03:51

Microsoft Internet Explorer 6 on Windows XP SP2 allows remote attackers to cause a denial of service (crash) via a (1) Forms.ListBox.1 or (2) Forms.ListBox.1 object with the ListWidth property set to (a) 0x7fffffff, which triggers an integer overflow...

5

CVE-2006-3910

Exploit
  • EPSS 40.67%
  • Published 28.07.2006 00:04:00
  • Last modified 03.04.2025 01:03:51

Internet Explorer 6 on Windows XP SP2, when Outlook is installed, allows remote attackers to cause a denial of service (crash) by calling the NewDefaultItem function of an OVCtl (OVCtl.OVCtl.1) ActiveX object, which triggers a null dereference.

9.3

CVE-2006-3730

Exploit
  • EPSS 88.44%
  • Published 21.07.2006 14:03:00
  • Last modified 03.04.2025 01:03:51

Integer overflow in Microsoft Internet Explorer 6 on Windows XP SP2 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a 0x7fffffff argument to the setSlice method on a WebViewFolderIcon ActiveX object, which ...

5

CVE-2006-3657

  • EPSS 30.92%
  • Published 18.07.2006 15:47:00
  • Last modified 03.04.2025 01:03:51

Microsoft Internet Explorer 6 allows remote attackers to cause a denial of service (stack overflow exception) via a DXImageTransform.Microsoft.Gradient ActiveX object with a long (1) StartColorStr or (2) EndColorStr property.

5

CVE-2006-3658

Exploit
  • EPSS 29.85%
  • Published 18.07.2006 15:47:00
  • Last modified 03.04.2025 01:03:51

Microsoft Internet Explorer 6 allows remote attackers to cause a denial of service (crash) by accessing the object references of a FolderItem ActiveX object, which triggers a null dereference in the security check.