CVE-2020-0674: Internet Explorer Scripting Engine Memory Corruption Vulnerability

A remote code execution vulnerability exists in some versions of Internet Explorer. An attacker who is able to convince a user to visit a malicious or compromised website may be able to execute code on the affected system, with the same permissions as the user. The vulnerability affects IE 9 on...

Microsoft Internet Explorer CVE-2019-0930 Information Disclosure Vulnerability

Description Microsoft Internet Explorer is prone to an information-disclosure vulnerability Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Internet Explorer 10 Microsoft Internet Explorer 11 Microsoft...

CVE-2018-8631

CVE-2018-8631 is a remote code execution vulnerability in Microsoft Internet Explorer caused by improper access to objects in memory. Affects Internet Explorer 9, 10, and 11. The issue enables an attacker to execute arbitrary code on a vulnerable system, with attack vector over network and user i...

Microsoft Internet Explorer CVE-2018-0949 Security Bypass Vulnerability

Description Microsoft Internet Explorer is prone to a security-bypass vulnerability. Successfully exploiting this issue may allow an attacker to bypass certain security restrictions and perform unauthorized actions. This may lead to other attacks. Internet Explorer 9, 10 and 11 are vulnerable...

Microsoft Internet Explorer CVE-2018-0929 Information Disclosure Vulnerability

Description Microsoft Internet Explorer are prone to an information-disclosure vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Successful exploits will allow attackers to obtain sensitive information that may aid in further...

Microsoft Internet Explorer CVE-2017-8733 Spoofing Vulnerability

Description Microsoft Internet Explorer is prone to a security vulnerability that may allow attackers to conduct spoofing attacks. An attacker can exploit this issue to conduct spoofing attacks and perform unauthorized actions; other attacks are also possible. Internet Explorer 9, 10 and 11 are...

Microsoft Internet Explorer CVE-2017-8519 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Internet Explorer 9,10,11 are vulnerable...

Microsoft Internet Explorer CVE-2017-0130 Scripting Engine Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-i...

Dropbox: XSS in OAuth Redirect Url

Hello guys, I found a XSS vulnerability in the OAuth Redirect Url parameter . So deep into the bug : Go to https://www.dropbox.com/developers/ Create an application In Redirect URIs , if you try to add javascript:alert1 it will tell you that javascript protocol is not accepted. But if you try to...

CVE-2016-0159

Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability."...

Privilege escalation

Microsoft Internet Explorer 9 through 11 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka "Internet Explorer Elevation of Privilege Vulnerability."...

On Dutch Encryption, the End of IE 8, 9, and 10 Support, and Zerodium's Latest Bounty

Mike Mimoso and Chris Brook discuss the week in news: How the Dutch are opening encryption with open arms, the end of support for IE 8, 9, and 10, and the latest bounty offered up by Zerodium. Download: newswrap01-08-16.mp3 Music by Chris Gonsalves...

Microsoft Internet Explorer CVE-2015-6046 Information Disclosure Vulnerability

Description Microsoft Internet Explorer is prone to an information disclosure vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Successful exploits will allow attackers to obtain sensitive information that may aid in further...

Microsoft Internet Explorer CVE-2015-1652 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

Microsoft Internet Explorer 'CAttrArray' Objects Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

CVE-2014-4052

CVE-2014-4052 affects Microsoft Internet Explorer 9 and 10. The connected sources describe a memory-corruption vulnerability exploitable via a crafted web site, enabling remote code execution or a denial of service. Open-source advisories (e.g., ZDI-14-280) specify a use-after-free in handling of...

Microsoft Internet Explorer CVE-2014-2774 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Successfully exploiting this issue may allow attackers to execute arbitrary code in the context of the application. Failed exploit attempts will result in denial-of-service conditions. Internet Explorer ...

Microsoft Internet Explorer CVE-2014-4052 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Successfully exploiting this issue may allow attackers to execute arbitrary code in the context of the application. Failed exploit attempts will result in denial-of-service conditions. Internet Explorer ...

CVE-2014-1774

Affected software: Microsoft Internet Explorer 9. The vulnerability is a memory corruption flaw in IE9 that can be triggered by a crafted web site, enabling remote code execution or a denial of service. This CVE is part of a set (CVE-2014-1774, -1788, -2754) describing memory corruption vulnerabi...

CVE-2014-2754

Microsoft Internet Explorer 9 memory corruption vulnerability CVE-2014-2754 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted web site, and is described as a memory corruption issue distinct from CVE-2014-1774 and CVE-2014-1788. The provided documents do...