SUSE CVE-2007-4841

Mozilla Firefox before 2.0.0.8, Thunderbird before 2.0.0.8, and SeaMonkey before 1.1.5 allows remote attackers to execute arbitrary commands via a 1 mailto, 2 nntp, 3 news, or 4 snews URI with invalid "%" encoding, related to improper file type handling on Windows XP with Internet Explorer 7...

SUSE CVE-2011-4345

Cross-site scripting XSS vulnerability in Namazu before 2.0.21, when Internet Explorer 6 or 7 is used, allows remote attackers to inject arbitrary web script or HTML via a cookie...

SUSE CVE-2011-4940

The listdirectory function in Lib/SimpleHTTPServer.py in SimpleHTTPServer in Python before 2.5.6c1, 2.6.x before 2.6.7 rc2, and 2.7.x before 2.7.2 does not place a charset parameter in the Content-Type HTTP header, which makes it easier for remote attackers to conduct cross-site scripting XSS...

Microsoft Internet Explorer Memory Corruption Vulnerability (CNVD-2015-08067)

Microsoft Internet Explorer IE is a Web browser developed by the American company Microsoft and is the default browser that comes with the Windows operating system. A memory corruption vulnerability exists when Microsoft IE versions 7 and 8 fail to properly access objects in memory. Allows an...

Microsoft Internet Explorer Memory Corruption Vulnerability (CNVD-2015-05905)

Microsoft Internet Explorer IE is a Web browser developed by the American company Microsoft and is the default browser that comes with the Windows operating system. A security vulnerability exists when Microsoft IE versions 7 and 8 fail to properly access objects in memory. The vulnerability allo...

CVE-2013-0090

Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Explorer CCaret Use After Free Vulnerability."...

DEBIAN-CVE-2011-4940

The listdirectory function in Lib/SimpleHTTPServer.py in SimpleHTTPServer in Python before 2.5.6c1, 2.6.x before 2.6.7 rc2, and 2.7.x before 2.7.2 does not place a charset parameter in the Content-Type HTTP header, which makes it easier for remote attackers to conduct cross-site scripting XSS...

python: potential XSS in SimpleHTTPServer's list_directory()

The listdirectory function in Lib/SimpleHTTPServer.py in SimpleHTTPServer in Python before 2.5.6c1, 2.6.x before 2.6.7 rc2, and 2.7.x before 2.7.2 does not place a charset parameter in the Content-Type HTTP header, which makes it easier for remote attackers to conduct cross-site scripting XSS...

PT-2012-2008 · Microsoft +3 · Internet Explorer +3

Name of the Vulnerable Software and Affected Versions: Python versions prior to 2.5.6c1 Python versions 2.6.x prior to 2.6.7 rc2 Python versions 2.7.x prior to 2.7.2 Description: The issue concerns the list directory function in Lib/SimpleHTTPServer.py in SimpleHTTPServer, which does not include ...

PT-2010-2536 · Microsoft · Internet Explorer

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer version 7 Description: The issue arises from improper handling of objects in memory, allowing remote attackers to execute arbitrary code by accessing a deleted object, leading to memory corruption. A remote code...

PT-2009-4026 · Microsoft · Internet Explorer 7 +1

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer 7 for Windows XP SP2 and SP3 Microsoft Internet Explorer 7 for Server 2003 SP2 Microsoft Internet Explorer 7 for Vista Gold, SP1, and SP2 Microsoft Internet Explorer 7 for Server 2008 SP2 Description: The issue...

PT-2009-4027 · Microsoft · Vista +5

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer 7 for Windows XP SP2 and SP3 Microsoft Internet Explorer 7 for Server 2003 SP2 Microsoft Internet Explorer 7 for Vista Gold, SP1, and SP2 Microsoft Internet Explorer 7 for Server 2008 SP2 Description: A...

PT-2009-4028 · Microsoft · Internet Explorer 7 +1

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer 7 for Windows XP SP2 and SP3 Microsoft Internet Explorer 7 for Server 2003 SP2 Microsoft Internet Explorer 7 for Vista Gold, SP1, and SP2 Microsoft Internet Explorer 7 for Server 2008 SP2 Description: A remote code...

PT-2009-3202 · Microsoft · Windows Server 2003 +4

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer versions 6 and 7 on Windows XP SP2 and SP3 Microsoft Internet Explorer versions 6 and 7 on Windows Server 2003 SP1 and SP2 Microsoft Internet Explorer version 7 on Windows Vista Gold and SP1 Microsoft Internet...

PT-2008-5543 · Microsoft · Internet Explorer

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer version 7 Description: A remote code execution issue exists due to the way Internet Explorer accesses a deleted object, allowing attackers to execute arbitrary code via a crafted HTML document that triggers memory...

CVE-2007-6492

The IMWeb.IMWebControl.1 ActiveX control in IMWeb.dll 7.0.0.x, and possibly IMWebControl.dll, in iMesh 7.1.0.x and earlier allows remote attackers to cause a denial of service Internet Explorer 7 crash via an empty string in the argument to the ProcessRequestEx method...

CVE-2007-1162

A certain ActiveX control in the Common Controls Replacement Project CCRP CCRP BrowseDialog Server ccrpbds6.dll allows remote attackers to cause a denial of service Internet Explorer 7 crash via a long 1 IsFolderAvailable or 2 RootFolder property value, different vectors than CVE-2007-0371...