Use-after-free vulnerability in Microsoft Internet Explorer 5.01 SP4, 6 through SP1, and 7 allows remote attackers to execute arbitrary code via a crafted data stream that triggers memory corruption, as demonstrated using an invalid MIME-type that does not have a registered handler.
Max CVSS
9.3
EPSS Score
52.11%
Published
2008-04-08
Updated
2018-10-12
Unspecified vulnerability in an ActiveX control (dxtmsft.dll) in Microsoft Internet Explorer 5.01, 6 SP1 and SP2, and 7 allows remote attackers to execute arbitrary code via a crafted image, aka "Argument Handling Memory Corruption Vulnerability."
Max CVSS
9.3
EPSS Score
78.61%
Published
2008-02-12
Updated
2018-10-12
Unspecified vulnerability in Microsoft Internet Explorer 5.01, 6 SP1 and SP2, and 7 allows remote attackers to execute arbitrary code via crafted HTML layout combinations, aka "HTML Rendering Memory Corruption Vulnerability."
Max CVSS
9.3
EPSS Score
89.80%
Published
2008-02-12
Updated
2018-10-12
3 vulnerabilities found