Microsoft

Ie

201 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 24.8%
  • Veröffentlicht 26.02.2007 11:28:00
  • Zuletzt bearbeitet 16.06.2026 22:36:55

Microsoft Internet Explorer 7 allows remote attackers to prevent users from leaving a site, spoof the address bar, and conduct phishing and other attacks via onUnload Javascript handlers.

  • EPSS 16.46%
  • Veröffentlicht 23.02.2007 03:28:00
  • Zuletzt bearbeitet 16.06.2026 22:34:15

Microsoft Internet Explorer 6 SP2 and earlier allows remote attackers to cause a denial of service (crash) via certain malformed HTML, possibly involving applet and base tags without required arguments, which triggers a null pointer dereference in ms...

  • EPSS 39.03%
  • Veröffentlicht 13.02.2007 23:28:00
  • Zuletzt bearbeitet 16.06.2026 22:35:08

Microsoft Internet Explorer 5.01, 6, and 7 uses certain COM objects from (1) Msb1fren.dll, (2) Htmlmm.ocx, and (3) Blnmgrps.dll as ActiveX controls, which allows remote attackers to execute arbitrary code via unspecified vectors, a different issue th...

  • EPSS 31.12%
  • Veröffentlicht 13.02.2007 22:28:00
  • Zuletzt bearbeitet 16.06.2026 22:29:36

Microsoft Internet Explorer 5.01, 6, and 7 uses certain COM objects from Imjpcksid.dll as ActiveX controls, which allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: this issue might be related to CVE-2006-4193.

  • EPSS 60.81%
  • Veröffentlicht 13.02.2007 22:28:00
  • Zuletzt bearbeitet 16.06.2026 22:35:08

The wininet.dll FTP client code in Microsoft Internet Explorer 5.01 and 6 might allow remote attackers to execute arbitrary code via an FTP server response of a specific length that causes a terminating null byte to be written outside of a buffer, wh...

Exploit
  • EPSS 17.25%
  • Veröffentlicht 07.02.2007 11:28:00
  • Zuletzt bearbeitet 16.06.2026 22:36:20

Microsoft Internet Explorer 6.0 SP1 on Windows 2000, and 6.0 SP2 on Windows XP, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an HTML document containing a certain JavaScript for loop with a...

Exploit
  • EPSS 42.88%
  • Veröffentlicht 31.01.2007 11:28:00
  • Zuletzt bearbeitet 16.06.2026 22:35:55

Multiple ActiveX controls in Microsoft Windows 2000, XP, 2003, and Vista allows remote attackers to cause a denial of service (Internet Explorer crash) by accessing the bgColor, fgColor, linkColor, alinkColor, vlinkColor, or defaultCharset properties...

Exploit
  • EPSS 16.78%
  • Veröffentlicht 19.01.2007 01:28:00
  • Zuletzt bearbeitet 16.06.2026 22:35:25

The Common Controls Replacement Project (CCRP) FolderTreeview (FTV) ActiveX control (ccrpftv6.ocx) allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long CCRP.RootFolder property value.

  • EPSS 46.49%
  • Veröffentlicht 09.01.2007 23:28:00
  • Zuletzt bearbeitet 16.06.2026 22:34:43

Integer overflow in the Vector Markup Language (VML) implementation (vgx.dll) in Microsoft Internet Explorer 5.01, 6, and 7 on Windows 2000 SP4, XP SP2, Server 2003, and Server 2003 SP1 allows remote attackers to execute arbitrary code via a crafted ...

Exploit
  • EPSS 16.2%
  • Veröffentlicht 20.12.2006 02:28:00
  • Zuletzt bearbeitet 16.06.2026 22:33:33

The Microsoft Office Outlook Recipient ActiveX control (ole32.dll) in Windows XP SP2 allows remote attackers to cause a denial of service (Internet Explorer 7 hang) via crafted HTML.