JavaScript in Internet Explorer 3.x and 4.x, and Netscape 2.x, 3.x and 4.x, allows remote attackers to monitor a user's web activities, aka the Bell Labs vulnerability.
Max CVSS
2.6
EPSS Score
21.53%
Published
1997-07-08
Updated
2021-07-22
Remote command execution in Microsoft Internet Explorer using .lnk and .url files.
Max CVSS
7.5
EPSS Score
0.45%
Published
1997-04-01
Updated
2022-08-17
Buffer overflow in Internet Explorer 4.0(1).
Max CVSS
7.5
EPSS Score
0.35%
Published
1998-01-01
Updated
2022-08-17
Internet Explorer 4.x or 5.x with Word 97 allows arbitrary execution of Visual Basic programs to the IE client through the Word 97 template, which doesn't warn the user that the template contains executable content. Also applies to Outlook when the client views a malicious email message.
Max CVSS
7.5
EPSS Score
0.28%
Published
1999-11-01
Updated
2021-07-22
Internet Explorer 5.0 allows a remote server to read arbitrary files on the client's file system using the Microsoft Scriptlet Component.
Max CVSS
2.6
EPSS Score
0.23%
Published
1999-04-09
Updated
2021-07-22
Internet Explorer 5.0 allows window spoofing, allowing a remote attacker to spoof a legitimate web site and capture information from the client.
Max CVSS
5.0
EPSS Score
85.34%
Published
1999-04-01
Updated
2022-08-17
The DHTML Edit ActiveX control in Internet Explorer allows remote attackers to read arbitrary files.
Max CVSS
2.6
EPSS Score
1.73%
Published
1999-05-01
Updated
2021-07-22
Internet Explorer 4.0 and 5.0 allows a remote attacker to execute security scripts in a different security context using malicious URLs, a variant of the "cross frame" vulnerability.
Max CVSS
7.5
EPSS Score
1.17%
Published
1999-04-21
Updated
2021-07-22
MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to learn information about a local user's files via an IMG SRC tag.
Max CVSS
7.5
EPSS Score
0.99%
Published
1999-04-21
Updated
2021-07-22
A configuration in a web browser such as Internet Explorer or Netscape Navigator allows execution of active content such as ActiveX, Java, Javascript, etc.
Max CVSS
7.5
EPSS Score
0.13%
Published
1998-04-01
Updated
2022-08-17
The scriptlet.typelib ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary commands as demonstrated by Bubbleboy.
Max CVSS
5.1
EPSS Score
38.00%
Published
1999-08-21
Updated
2021-07-22
The Eyedog ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary commands as demonstrated by Bubbleboy.
Max CVSS
4.0
EPSS Score
2.92%
Published
1999-09-01
Updated
2021-07-22
Buffer overflow in the Eyedog ActiveX control allows a remote attacker to execute arbitrary commands.
Max CVSS
4.0
EPSS Score
0.24%
Published
1999-09-01
Updated
2021-07-22
Internet Explorer 5.0 and 5.01 allows remote attackers to modify or execute files via the Import/Export Favorites feature, aka the "ImportExportFavorites" vulnerability.
Max CVSS
10.0
EPSS Score
3.66%
Published
1999-09-10
Updated
2021-07-22
Internet Explorer allows remote attackers to read files by redirecting data to a Javascript applet.
Max CVSS
2.6
EPSS Score
1.73%
Published
1999-11-17
Updated
2021-07-22
Buffer overflow in Internet Explorer 5 allows remote attackers to execute commands via a malformed Favorites icon.
Max CVSS
7.6
EPSS Score
0.43%
Published
1999-05-27
Updated
2021-07-22
By default, Internet Explorer 5.0 and other versions enables the "Navigate sub-frames across different domains" option, which allows frame spoofing.
Max CVSS
2.6
EPSS Score
0.23%
Published
1999-11-01
Updated
2022-08-17
Internet Explorer 5 allows a remote attacker to modify the IE client's proxy configuration via a malicious Web Proxy Auto-Discovery (WPAD) server.
Max CVSS
5.0
EPSS Score
0.79%
Published
1999-12-02
Updated
2021-07-22
Internet Explorer 3.x to 4.01 allows a remote attacker to insert malicious content into a frame of another web site, aka frame spoofing.
Max CVSS
2.6
EPSS Score
2.63%
Published
1998-12-01
Updated
2021-07-22
Internet Explorer 4.01 allows remote attackers to read arbitrary files by pasting a file name into the file upload control, aka untrusted scripted paste.
Max CVSS
2.6
EPSS Score
3.15%
Published
1998-10-01
Updated
2021-07-22
Internet Explorer 4.0 and 4.01 allow a remote attacker to read files via IE's cross frame security, aka the "Cross Frame Navigate" vulnerability.
Max CVSS
2.6
EPSS Score
0.54%
Published
1998-09-04
Updated
2021-07-22
Buffer overflow in Internet Explorer 4.0 via EMBED tag.
Max CVSS
10.0
EPSS Score
1.00%
Published
2000-01-04
Updated
2021-07-22
Internet Explorer 5 allows remote attackers to read files via an ExecCommand method called on an IFRAME.
Max CVSS
4.3
EPSS Score
0.71%
Published
1999-10-01
Updated
2021-07-22
The "download behavior" in Internet Explorer 5 allows remote attackers to read arbitrary files via a server-side redirect.
Max CVSS
5.0
EPSS Score
3.29%
Published
1999-09-01
Updated
2021-07-22
The Preloader ActiveX control used by Internet Explorer allows remote attackers to read arbitrary files.
Max CVSS
5.1
EPSS Score
0.50%
Published
1999-05-27
Updated
2021-07-22
1633 vulnerabilities found
1 2 3 4 5 6 ...... 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!