Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2005-1831

Malware in sbrugna...

5CVSS6.4AI score0.12718EPSS
Exploits0References2
Symantec
Symantec
added 2014/09/09 12:0 a.m.25 views

Microsoft Internet Explorer CVE-2014-4110 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

9.3CVSS0.6AI score0.15145EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2014/02/12 12:0 a.m.60 views

Microsoft Internet Explorer Multiple Vulnerabilities (2909921)

This host is missing a critical security update according to Microsoft Bulletin MS14-010. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.3CVSS5AI score0.38434EPSS
Exploits5References26
seebug.org
seebug.org
added 2013/04/16 12:0 a.m.16 views

Microsoft Internet Explorer CSS导入处理拒绝服务漏洞

Microsoft Internet Explorer是一款流行的WEB浏览器 Microsoft Internet Explorer处理特制的CSS导入存在一个段错误,允许攻击者构建恶意WEB页,诱使用户解析,使应用程序崩溃。 此漏洞需要用户一些交互才能触发,并且目前来看不能用于执行代码 0 Microsoft Internet Explorer 6 Microsoft Internet Explorer 7 Microsoft Internet Explorer 8 厂商解决方案 目前没有详细解决方案提供: http://www.microsoft.com/...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2010/01/17 12:0 a.m.194 views

Microsoft Internet Explorer 6 - 'Aurora' Memory Corruption (MS10-002)

Author : Ahmed Obied [email protected] This program acts as a web server that generates an exploit to target a vulnerability CVE-2010-0249 in Internet Explorer. The exploit was tested using Internet Explorer 6 on Windows XP SP2. The exploit's payload spawns the calculator. Usage : python...

9.3CVSS8.7AI score0.91885EPSS
Exploits16
Prion
Prion
added 2008/10/29 3:31 p.m.31 views

Design/Logic Flaw

Visual truncation vulnerability in Microsoft Internet Explorer 6 allows remote attackers to spoof the address bar via a URL with a hostname containing many Non-Blocking Space character sequences, which are rendered as whitespace, aka MSRC ticket MSRC7899, a related issue to CVE-2003-1025...

5.8CVSS6.6AI score0.26912EPSS
Exploits2References4Affected Software1
CVE
CVE
added 2008/10/15 12:0 a.m.55 views

CVE-2008-3475

CVE-2008-3475 affects Microsoft Internet Explorer 6. The vulnerability arises from improper handling of componentFromPoint on XML objects that are uninitialized or deleted, enabling an attacker to execute arbitrary code via a crafted HTML page. Impact includes remote code execution with the attac...

9.3CVSS8.8AI score0.39864EPSS
Exploits1References12Affected Software1
securityvulns
securityvulns
added 2008/10/15 12:0 a.m.74 views

[Full-disclosure] ZDI-08-069: Microsoft Internet Explorer componentFromPoint Memory Corruption Vulnerability

ZDI-08-069: Microsoft Internet Explorer componentFromPoint Memory Corruption Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-069 -- CVE ID: CVE-2008-3475 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Internet Explorer 6 -- TippingPointTM IPS Customer Protection:...

9.3CVSS0.6AI score0.39864EPSS
Exploits1
Prion
Prion
added 2008/06/30 10:41 p.m.20 views

Cross site scripting

Cross-domain vulnerability in Microsoft Internet Explorer 6 and 7 allows remote attackers to change the location property of a frame via the String data type, and use a frame from a different domain to observe domain-independent events, as demonstrated by observing onkeydown events with...

6.8CVSS6.6AI score0.24744EPSS
Exploits1References5Affected Software1
seebug.org
seebug.org
added 2007/12/13 12:0 a.m.58 views

MS Internet Explorer (createTextRang) Download Shellcoded Exploit

No description provided by source. / Internet Explorer "createTextRang" Download Shellcoded Exploit Bug discovered by Computer Terrorism UK http://www.computerterrorism.com/research/ct22-03-2006 Reliable exploitation by Darkeagle of Unl0ck Research Team http://www.milw0rm.com/exploits/1606...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/08/10 12:0 a.m.28 views

Microsoft DXMedia SDK 6 - 'SourceUrl' ActiveX Remote Code Execution

Tested on:.. - Microsoft DirectX Media 6.0 SDK - Microsoft Internet Explorer 6 + all patches - Microsoft Windows XP SP2 Polish + all patches Details:.. obj.SourceUrl = "AAAA..1044..AAAA"; location.reload; Module DXTLIPI EAX 41414141 CALL DWORD PTR DS:EAX -- var shellcode = unescape"%u9090%u9090"+...

7.4AI score
Exploits0
CVE
CVE
added 2007/06/06 9:0 p.m.55 views

CVE-2007-3092

CVE-2007-3092 affects Microsoft Internet Explorer 6. The vulnerability allows remote attackers to spoof the URL bar and page properties (including SSL certificates) by interrupting page loading with certain uses of location DOM objects and setTimeout calls, enabling phishing-like attacks. Exploit...

9.3CVSS6.7AI score0.19976EPSS
Exploits1References9Affected Software1
CVE
CVE
added 2006/09/12 11:0 p.m.62 views

CVE-2006-3873

CVE-2006-3873 describes a heap-based buffer overflow in URLMON.DLL of Microsoft Internet Explorer 6 SP1 on Windows 2000/XP SP1, exploitable via a long URL in a GZIP-compressed HTTP-redirected web page. The issue is tied to an incomplete fix for CVE-2006-3869 and is mitigated by applying the MS06-...

7.5CVSS7.9AI score0.2857EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2006/07/17 7:0 p.m.59 views

CVE-2006-3659

Microsoft Internet Explorer 6 is affected by CVE-2006-3659. The vulnerability enables remote attackers to cause a denial of service (crash) by setting the location or URL property of a MHTMLFile ActiveX object. The public description across sources consistently states this is a crash/DoS vector i...

5CVSS7AI score0.14914EPSS
Exploits0References5Affected Software2
CVE
CVE
added 2006/07/11 10:0 p.m.66 views

CVE-2006-3510

CVE-2006-3510 affects Microsoft Internet Explorer 6 on Windows 2000, where the Remote Data Service Object (RDS.DataControl) can crash a system. The vulnerability stems from an invalid length calculation in operations using SysAllocStringLen, which then triggers a buffer over-read. The described i...

2.6CVSS6.8AI score0.14753EPSS
Exploits1References5Affected Software1
exploitpack
exploitpack
added 2006/03/21 12:0 a.m.14 views

Microsoft Internet Explorer 6 - Script Action Handlers mshtml.dll Denial of Service

Microsoft Internet Explorer 6 - Script Action Handlers mshtml.dll Denial of Service foo onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork...

1.7AI score
Exploits0
Exploit DB
Exploit DB
added 2006/03/21 12:0 a.m.148 views

Microsoft Internet Explorer 6 - Script Action Handlers 'mshtml.dll' Denial of Service

foo onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork onclick=bork...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2002/09/10 12:0 a.m.30 views

Microsoft Internet Explorer 6 - URI Handler Restriction Circumvention

source: https://www.securityfocus.com/bid/5730/info Microsoft Windows Internet Explorer 6.0 SP1 introduced restrictions for certain URI handlers such as file:// and res://. It has been demonstrated in the past that these URI handlers could be abused and incorporated into different types of attack...

7AI score
Exploits0
Rows per page
Query Builder