English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:10861
Category:Windows : Microsoft Bulletins
Title:Microsoft Internet Explorer 5.01, 5.5, 6.0 Cumulative Patch (890923, MS05-020)
Summary:The July 2004 Cumulative Patch for IE is not applied on the remote host.
Description:Summary:
The July 2004 Cumulative Patch for IE is not applied on the remote host.

Vulnerability Impact:
Run code of attacker's choice.

Solution:
The vendor has released updates, please see the references for more information.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2004-0842
BugTraq ID: 10816
http://www.securityfocus.com/bid/10816
Bugtraq: 20040728 Re: Crash IE with 11 bytes ;) (Google Search)
http://marc.info/?l=bugtraq&m=109107496214572&w=2
Cert/CC Advisory: TA04-293A
http://www.us-cert.gov/cas/techalerts/TA04-293A.html
CERT/CC vulnerability note: VU#291304
http://www.kb.cert.org/vuls/id/291304
Computer Incident Advisory Center Bulletin: P-006
http://www.ciac.org/ciac/bulletins/p-006.shtml
http://marc.info/?l=full-disclosure&m=109060455614702&w=2
http://marc.info/?l=full-disclosure&m=109102919426844&w=2
http://www.ecqurity.com/adv/IEstyle.html
http://www.securiteam.com/exploits/5NP042KF5A.html
Microsoft Security Bulletin: MS04-038
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-038
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2906
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3372
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4169
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5592
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6579
http://secunia.com/advisories/12806
XForce ISS Database: ie-popupshow-perform-actions(16675)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16675
Common Vulnerability Exposure (CVE) ID: CVE-2004-0727
Bugtraq: 20040711 MSIE Similar Method Name Redirection Cross Site/Zone Scripting (Google Search)
http://marc.info/?l=bugtraq&m=108966512815373&w=2
CERT/CC vulnerability note: VU#207264
http://www.kb.cert.org/vuls/id/207264
http://freehost07.websamba.com/greyhats/similarmethodnameredir.htm
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4702
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6829
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7084
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7448
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7496
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7906
http://secunia.com/advisories/12048
XForce ISS Database: ie-function-redirect-xss(16681)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16681
Common Vulnerability Exposure (CVE) ID: CVE-2004-0216
Bugtraq: 20041012 Microsoft Internet Explorer Install Engine Control Buffer Overflow (Google Search)
http://marc.info/?l=bugtraq&m=109760693512754&w=2
Bugtraq: 20050119 Microsoft Internet Explorer Install Engine Control Buffer Overflow (#NISR19012005a) (Google Search)
http://marc.info/?l=bugtraq&m=110616383332055&w=2
CERT/CC vulnerability note: VU#637760
http://www.kb.cert.org/vuls/id/637760
http://www.ngssoftware.com/advisories/msinsengfull.txt
http://marc.info/?l=ntbugtraq&m=110619893620517&w=2
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5316
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5329
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6100
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6600
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7717
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7865
XForce ISS Database: ie-installenginectl-setciffile-bo(17620)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17620
XForce ISS Database: ie-ms04038-patch(17651)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17651
Common Vulnerability Exposure (CVE) ID: CVE-2004-0839
BugTraq ID: 10973
http://www.securityfocus.com/bid/10973
Bugtraq: 20040818 What A Drag II XP SP2 (Google Search)
http://marc.info/?l=bugtraq&m=109303291513335&w=2
Bugtraq: 20040824 What A Drag! -revisited- (Google Search)
http://marc.info/?l=bugtraq&m=109336221826652&w=2
CERT/CC vulnerability note: VU#526089
http://www.kb.cert.org/vuls/id/526089
http://seclists.org/lists/fulldisclosure/2004/Aug/0868.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1563
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2073
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3773
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4152
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6272
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7721
XForce ISS Database: ie-dragdrop-code-execution(17044)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17044
Common Vulnerability Exposure (CVE) ID: CVE-2004-0844
Bugtraq: 20041128 Address Bar Spoofing on Double Byte Character Set Locale Vulnerability (CAN-2004-0844) Patched in MS04-038 (Google Search)
http://marc.info/?l=bugtraq&m=110178042025729&w=2
CERT/CC vulnerability note: VU#431576
http://www.kb.cert.org/vuls/id/431576
http://marc.info/?l=ntbugtraq&m=110174346717733&w=2
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2448
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8127
XForce ISS Database: ie-dbcs-obtain-information(17652)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17652
Common Vulnerability Exposure (CVE) ID: CVE-2004-0843
CERT/CC vulnerability note: VU#625616
http://www.kb.cert.org/vuls/id/625616
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2487
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2537
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3949
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6313
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7095
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7194
XForce ISS Database: ie-plugin-address-spoofing(17655)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17655
Common Vulnerability Exposure (CVE) ID: CVE-2004-0841
BugTraq ID: 10690
http://www.securityfocus.com/bid/10690
Bugtraq: 20040711 HijackClick 3 (Google Search)
http://www.securityfocus.com/archive/1/368652
Bugtraq: 20040712 Re: HijackClick 3 (Google Search)
http://www.securityfocus.com/archive/1/368666
CERT/CC vulnerability note: VU#413886
http://www.kb.cert.org/vuls/id/413886
http://archives.neohapsis.com/archives/fulldisclosure/2004-07/0498.html
http://www.osvdb.org/7774
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2611
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4363
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5620
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6031
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6048
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8077
http://securitytracker.com/id?1010679
Common Vulnerability Exposure (CVE) ID: CVE-2004-0845
Bugtraq: 20041013 ACROS Security: Poisoning Cached HTTPS Documents in Internet Explorer (Google Search)
http://marc.info/?l=bugtraq&m=109770364504803&w=2
CERT/CC vulnerability note: VU#795720
http://www.kb.cert.org/vuls/id/795720
http://www.acrossecurity.com/aspr/ASPR-2004-10-13-1-PUB.txt
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2219
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3872
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5150
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5520
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5740
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7611
XForce ISS Database: ie-cache-ssl-obtain-information(17654)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17654
Common Vulnerability Exposure (CVE) ID: CVE-2003-0814
Bugtraq: 20030910 MSIE->BodyRefreshLoadsJPU:refresh is a new navigation method (Google Search)
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2003-09/0177.html
Bugtraq: 20030911 LiuDieYu's missing files are here. (Google Search)
http://www.securityfocus.com/archive/1/337086
CERT/CC vulnerability note: VU#326412
http://www.kb.cert.org/vuls/id/326412
http://www.safecenter.net/liudieyu/BodyRefreshLoadsJPU/BodyRefreshLoadsJPU-Content.htm
Microsoft Security Bulletin: MS03-048
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-048
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A335
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A341
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A342
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A343
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A344
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A349
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A392
http://securitytracker.com/id?1007687
http://secunia.com/advisories/10192
Common Vulnerability Exposure (CVE) ID: CVE-2003-0815
BugTraq ID: 9014
http://www.securityfocus.com/bid/9014
Bugtraq: 20030910 MSIE->Findeath: break caller-based authorization (Google Search)
http://marc.info/?l=bugtraq&m=106322542104656&w=2
Bugtraq: 20030910 MSIE->LinkillerJPU:another caller-based authorization(is broken). (Google Search)
http://marc.info/?l=bugtraq&m=106321757619047&w=2
Bugtraq: 20030910 MSIE->LinkillerSaveRef:another caller-based authorization (Google Search)
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2003-09/0150.html
Computer Incident Advisory Center Bulletin: O-021
http://www.ciac.org/ciac/bulletins/o-021.shtml
http://www.safecenter.net/UMBRELLAWEBV4/Linkiller/Linkiller-Content.HTM
http://www.safecenter.net/UMBRELLAWEBV4/LinkillerJPU/LinkillerJPU-Content.HTM
http://www.safecenter.net/UMBRELLAWEBV4/LinkillerSaveRef/LinkillerSaveRef-Content.HTM
http://www.osvdb.org/7888
http://www.osvdb.org/7889
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A351
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A352
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A353
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A356
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A357
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A359
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A472
XForce ISS Database: ie-pointer-zone-bypass(13676)
https://exchange.xforce.ibmcloud.com/vulnerabilities/13676
Common Vulnerability Exposure (CVE) ID: CVE-2003-0816
Bugtraq: 20030910 MSIE->BackMyParent2:Multi-Thread version (Google Search)
http://marc.info/?l=bugtraq&m=106322240132721&w=2
Bugtraq: 20030910 MSIE->NAFfileJPU (Google Search)
http://www.securityfocus.com/archive/1/336937
Bugtraq: 20030910 MSIE->NAFjpuInHistory (Google Search)
http://marc.info/?l=bugtraq&m=106321693517858&w=2
Bugtraq: 20030910 MSIE->RefBack (Google Search)
http://marc.info/?l=bugtraq&m=106321638416884&w=2
Bugtraq: 20030910 MSIE->WsBASEjpu (Google Search)
http://marc.info/?l=bugtraq&m=106322063729496&w=2
Bugtraq: 20030910 MSIE->WsFakeSrc (Google Search)
http://marc.info/?l=bugtraq&m=106321781819727&w=2
Bugtraq: 20030910 MSIE->WsOpenFileJPU (Google Search)
http://marc.info/?l=bugtraq&m=106321882821788&w=2
Bugtraq: 20030910 MSIE->WsOpenJpuInHistory (Google Search)
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2003-09/0146.html
CERT/CC vulnerability note: VU#652452
http://www.kb.cert.org/vuls/id/652452
CERT/CC vulnerability note: VU#771604
http://www.kb.cert.org/vuls/id/771604
http://www.safecenter.net/UMBRELLAWEBV4/NAFfileJPU/NAFfileJPU-Content.htm
http://www.safecenter.net/UMBRELLAWEBV4/WsOpenFileJPU/WsOpenFileJPU-Content.HTM
http://www.safecenter.net/liudieyu/BackMyParent/BackMyParent-content.htm
http://www.safecenter.net/liudieyu/BackMyParent2/BackMyParent2-Content.HTM
http://www.safecenter.net/liudieyu/NAFjpuInHistory/NAFjpuInHistory-Content.HTM
http://www.safecenter.net/liudieyu/RefBack/RefBack-Content.HTM
http://www.safecenter.net/liudieyu/WsBASEjpu/WsBASEjpu-Content.HTM
http://www.safecenter.net/liudieyu/WsFakeSrc/WsFakeSrc-Content.HTM
http://www.safecenter.net/liudieyu/WsOpenJpuInHistory/WsOpenJpuInHistory-Content.HTM
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A361
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A362
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A363
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A409
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A416
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A459
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A479
Common Vulnerability Exposure (CVE) ID: CVE-2003-0817
BugTraq ID: 9012
http://www.securityfocus.com/bid/9012
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A508
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A520
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A543
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A548
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A549
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A556
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A566
Common Vulnerability Exposure (CVE) ID: CVE-2003-0823
Bugtraq: 20030910 MSIE->HijackClick: 1+1=2 (Google Search)
http://marc.info/?l=bugtraq&m=106322197932006&w=2
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A368
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A369
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A370
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A371
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A372
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A588
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A733
http://www.securitytracker.com/id?1006036
Common Vulnerability Exposure (CVE) ID: CVE-2004-0549
Bugtraq: 20040621 IE/0DAY -> Insider Prototype (Google Search)
http://marc.info/?l=bugtraq&m=108786396622284&w=2
Bugtraq: 20040628 JS.Scob.Trojan Source Code ... (Google Search)
http://marc.info/?l=bugtraq&m=108852642021426&w=2
Cert/CC Advisory: TA04-163A
http://www.us-cert.gov/cas/techalerts/TA04-163A.html
Cert/CC Advisory: TA04-184A
http://www.us-cert.gov/cas/techalerts/TA04-184A.html
Cert/CC Advisory: TA04-212A
http://www.us-cert.gov/cas/techalerts/TA04-212A.html
CERT/CC vulnerability note: VU#713878
http://www.kb.cert.org/vuls/id/713878
http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0031.html
http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0104.html
http://62.131.86.111/analysis.htm
http://umbrella.name/originalvuln/msie/InsiderPrototype/
Microsoft Security Bulletin: MS04-025
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-025
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1133
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A207
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A241
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A519
XForce ISS Database: ie-location-restriction-bypass(16348)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16348
Common Vulnerability Exposure (CVE) ID: CVE-2004-0566
CERT/CC vulnerability note: VU#266926
http://www.kb.cert.org/vuls/id/266926
http://archives.neohapsis.com/archives/fulldisclosure/2004-02/0806.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A216
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A306
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A322
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A507
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A515
XForce ISS Database: ie-bmp-integer-overflow(15210)
https://exchange.xforce.ibmcloud.com/vulnerabilities/15210
Common Vulnerability Exposure (CVE) ID: CVE-2003-1048
BugTraq ID: 8530
http://www.securityfocus.com/bid/8530
CERT/CC vulnerability note: VU#685364
http://www.kb.cert.org/vuls/id/685364
Computer Incident Advisory Center Bulletin: O-191
http://www.ciac.org/ciac/bulletins/o-191.shtml
http://lists.grok.org.uk/pipermail/full-disclosure/2003-September/009445.html
http://lists.grok.org.uk/pipermail/full-disclosure/2003-September/009473.html
http://lists.grok.org.uk/pipermail/full-disclosure/2003-September/009506.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1793
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A206
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2100
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A212
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A236
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A509
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A517
XForce ISS Database: ie-mshtml-gif-bo(16804)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16804
Common Vulnerability Exposure (CVE) ID: CVE-2001-1325
BugTraq ID: 2633
http://www.securityfocus.com/bid/2633
Bugtraq: 20010420 XML scripting in IE, Outlook Express (Google Search)
http://www.securityfocus.com/archive/1/3AE02004.57FDF958@guninski.com
XForce ISS Database: ie-xml-stylesheets-scripting(6448)
https://exchange.xforce.ibmcloud.com/vulnerabilities/6448
Common Vulnerability Exposure (CVE) ID: CVE-2001-0149
BugTraq ID: 1718
http://www.securityfocus.com/bid/1718
Bugtraq: 20000926 IE 5.5/Outlook Express security vulnerability - GetObject() expose user's files (Google Search)
http://archives.neohapsis.com/archives/bugtraq/2000-09/0305.html
Microsoft Security Bulletin: MS01-015
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-015
http://marc.info/?l=ntbugtraq&m=96999020527583&w=2
XForce ISS Database: ie-getobject-expose-files(5293)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5293
Common Vulnerability Exposure (CVE) ID: CVE-2001-0727
BugTraq ID: 3578
http://www.securityfocus.com/bid/3578
Bugtraq: 20011214 MSIE may download and run progams automatically (Google Search)
http://marc.info/?l=bugtraq&m=100835204509262&w=2
Bugtraq: 20011216 Re: MSIE may download and run progams automatically - NOT SO FAST (Google Search)
http://marc.info/?l=bugtraq&m=100861273114437&w=2
http://www.cert.org/advisories/CA-2001-36.html
CERT/CC vulnerability note: VU#443699
http://www.kb.cert.org/vuls/id/443699
Computer Incident Advisory Center Bulletin: M-027
http://www.ciac.org/ciac/bulletins/m-027.shtml
Microsoft Security Bulletin: MS01-058
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-058
http://www.osvdb.org/3033
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A921
XForce ISS Database: ie-file-download-execution(7703)
https://exchange.xforce.ibmcloud.com/vulnerabilities/7703
Common Vulnerability Exposure (CVE) ID: CVE-2001-0875
BugTraq ID: 3597
http://www.securityfocus.com/bid/3597
Bugtraq: 20011126 File extensions spoofable in MSIE download dialog (Google Search)
http://www.securityfocus.com/archive/1/245594
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1014
XForce ISS Database: ie-file-download-ext-spoof(7636)
https://exchange.xforce.ibmcloud.com/vulnerabilities/7636
Common Vulnerability Exposure (CVE) ID: CVE-2001-0339
BugTraq ID: 2737
http://www.securityfocus.com/bid/2737
Computer Incident Advisory Center Bulletin: L-087
http://www.ciac.org/ciac/bulletins/l-087.shtml
Microsoft Security Bulletin: MS01-027
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-027
http://www.osvdb.org/5694
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1096
XForce ISS Database: ie-html-url-spoofing(6556)
https://exchange.xforce.ibmcloud.com/vulnerabilities/6556
Common Vulnerability Exposure (CVE) ID: CVE-2001-0002
BugTraq ID: 2456
http://www.securityfocus.com/bid/2456
Bugtraq: 20001120 IE 5.x/Outlook allows executing arbitrary programs using .chm files and temporary internet files folder (Google Search)
http://www.guninski.com/chmtempmain.html
http://www.osvdb.org/7823
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A920
XForce ISS Database: ie-chm-execute-files(5567)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5567
Common Vulnerability Exposure (CVE) ID: CVE-2002-0190
BugTraq ID: 4753
http://www.securityfocus.com/bid/4753
CERT/CC vulnerability note: VU#242891
http://www.kb.cert.org/vuls/id/242891
Microsoft Security Bulletin: MS02-023
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-023
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A923
http://www.iss.net/security_center/static/9084.php
Common Vulnerability Exposure (CVE) ID: CVE-2002-0026
BugTraq ID: 4082
http://www.securityfocus.com/bid/4082
Microsoft Security Bulletin: MS02-005
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-005
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A23
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A32
Common Vulnerability Exposure (CVE) ID: CVE-2003-1326
BugTraq ID: 6779
http://www.securityfocus.com/bid/6779
Computer Incident Advisory Center Bulletin: N-038
http://www.ciac.org/ciac/bulletins/n-038.shtml
Microsoft Security Bulletin: MS03-004
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-004
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A126
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A178
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A49
http://www.iss.net/security_center/static/11258.php
Common Vulnerability Exposure (CVE) ID: CVE-2002-0027
BugTraq ID: 3721
http://www.securityfocus.com/bid/3721
Bugtraq: 20011219 Internet Explorer Document.Open() Without Close() Cookie Stealing, File Reading, Site Spoofing Bug (Google Search)
http://www.securityfocus.com/archive/1/246522
http://www.osvdb.org/3031
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A974
Common Vulnerability Exposure (CVE) ID: CVE-2002-0022
BugTraq ID: 4080
http://www.securityfocus.com/bid/4080
Bugtraq: 20020213 dH & SECURITY.NNOV: buffer overflow in mshtml.dll (Google Search)
http://marc.info/?l=bugtraq&m=101362984930597&w=2
Bugtraq: 20020227 Details and exploitation of buffer overflow in mshtml.dll (and few sidenotes on Unicode overflows in general) (Google Search)
http://online.securityfocus.com/archive/1/258614
http://www.cert.org/advisories/CA-2002-04.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A925
http://www.iss.net/security_center/static/8116.php
Common Vulnerability Exposure (CVE) ID: CVE-2003-1328
BugTraq ID: 6780
http://www.securityfocus.com/bid/6780
Bugtraq: 20030206 showHelp("file:") disables security in IE - Sandblad advisory #11 (Google Search)
http://archives.neohapsis.com/archives/bugtraq/2003-02/0083.html
CERT/CC vulnerability note: VU#400577
http://www.kb.cert.org/vuls/id/400577
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A57
http://www.iss.net/security_center/static/11259.php
Common Vulnerability Exposure (CVE) ID: CVE-2002-1262
Bugtraq: 20021125 RE: MS02-066 - fixes, gaps and incorrect statements (Google Search)
http://marc.info/?l=bugtraq&m=103825484331857&w=2
Bugtraq: 20021205 Notes on MS02-068, extensive downplaying of severity (Google Search)
http://marc.info/?l=bugtraq&m=103910416824172&w=2
Microsoft Security Bulletin: MS02-068
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-068
http://marc.info/?l=ntbugtraq&m=103824668621672&w=2
http://marc.info/?l=ntbugtraq&m=103909877717345&w=2
Common Vulnerability Exposure (CVE) ID: CVE-2002-0193
BugTraq ID: 4752
http://www.securityfocus.com/bid/4752
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A27
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A99
XForce ISS Database: ie-content-disposition-variant(9085)
https://exchange.xforce.ibmcloud.com/vulnerabilities/9085
Common Vulnerability Exposure (CVE) ID: CVE-1999-1016
BugTraq ID: 606
http://www.securityfocus.com/bid/606
http://marc.info/?l=ntbugtraq&m=93578772920970&w=2
Common Vulnerability Exposure (CVE) ID: CVE-2003-0344
Bugtraq: 20030604 Internet Explorer Object Type Property Overflow (Google Search)
http://marc.info/?l=bugtraq&m=105476381609135&w=2
CERT/CC vulnerability note: VU#679556
http://www.kb.cert.org/vuls/id/679556
eEye Security Advisory: AD20030604
http://www.eeye.com/html/Research/Advisories/AD20030604.html
http://lists.grok.org.uk/pipermail/full-disclosure/2003-July/006401.html
Microsoft Security Bulletin: MS03-020
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-020
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A922
http://secunia.com/advisories/8943
Common Vulnerability Exposure (CVE) ID: CVE-2003-0233
Bugtraq: 20030424 Internet Explorer Plugin.ocx heap overflow (#NISR24042003) (Google Search)
http://marc.info/?l=bugtraq&m=105120164927952&w=2
Microsoft Security Bulletin: MS03-015
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-015
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1094
http://www.iss.net/security_center/static/11854.php
Common Vulnerability Exposure (CVE) ID: CVE-2003-0309
BugTraq ID: 7539
http://www.securityfocus.com/bid/7539
Bugtraq: 20030508 Flooding Internet Explorer 6.0.2800 (6.x?) security zones ! [CRITICAL] (Google Search)
http://marc.info/?l=bugtraq&m=105249399103214&w=2
Bugtraq: 20030513 Flooding Internet Explorer 6.0.2800 (6.x?) security zones ! - UPDATED (Google Search)
http://marc.info/?l=bugtraq&m=105294081325040&w=2
CERT/CC vulnerability note: VU#251788
http://www.kb.cert.org/vuls/id/251788
http://marc.info/?l=ntbugtraq&m=105294162726096&w=2
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A948
http://secunia.com/advisories/8807
XForce ISS Database: ie-frame-restrictions-bypass(12019)
https://exchange.xforce.ibmcloud.com/vulnerabilities/12019
Common Vulnerability Exposure (CVE) ID: CVE-2003-0113
Bugtraq: 20030426 Buffer overflow in Internet Explorer's HTTP parsing code (Google Search)
http://marc.info/?l=bugtraq&m=105138417416900&w=2
Bugtraq: 20030701 URLMON.DLL buffer overflow - technical details (Google Search)
http://marc.info/?l=bugtraq&m=105718285107246&w=2
CERT/CC vulnerability note: VU#169753
http://www.kb.cert.org/vuls/id/169753
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A926
Common Vulnerability Exposure (CVE) ID: CVE-2003-0114
Bugtraq: 20030203 internet explorer local file reading (Google Search)
http://marc.info/?l=bugtraq&m=104429340817718&w=2
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A963
Common Vulnerability Exposure (CVE) ID: CVE-2003-0115
http://www.iss.net/security_center/static/11848.php
Common Vulnerability Exposure (CVE) ID: CVE-2003-0116
BugTraq ID: 6306
http://www.securityfocus.com/bid/6306
Bugtraq: 20021203 Poisonous Style for Dialog window turns the zone off. (Google Search)
http://www.securityfocus.com/archive/1/301945
CERT/CC vulnerability note: VU#244729
http://www.kb.cert.org/vuls/id/244729
Common Vulnerability Exposure (CVE) ID: CVE-2003-0531
BugTraq ID: 8457
http://www.securityfocus.com/bid/8457
http://www.cert.org/advisories/CA-2003-22.html
CERT/CC vulnerability note: VU#205148
http://www.kb.cert.org/vuls/id/205148
http://www.lac.co.jp/security/english/snsadv_e/67_e.html
Microsoft Security Bulletin: MS03-032
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-032
http://secunia.com/advisories/9580
XForce ISS Database: ie-cache-script-injection(12961)
https://exchange.xforce.ibmcloud.com/vulnerabilities/12961
Common Vulnerability Exposure (CVE) ID: CVE-2003-0809
BugTraq ID: 8565
http://www.securityfocus.com/bid/8565
Microsoft Security Bulletin: MS03-040
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-040
http://www.osvdb.org/7887
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A123
XForce ISS Database: ie-xmlobject-code-execution(13300)
https://exchange.xforce.ibmcloud.com/vulnerabilities/13300
Common Vulnerability Exposure (CVE) ID: CVE-2003-0530
BugTraq ID: 8454
http://www.securityfocus.com/bid/8454
CERT/CC vulnerability note: VU#548964
http://www.kb.cert.org/vuls/id/548964
http://securitytracker.com/id?1007538
XForce ISS Database: ie-br549-activex-bo(12962)
https://exchange.xforce.ibmcloud.com/vulnerabilities/12962
Common Vulnerability Exposure (CVE) ID: CVE-2003-1025
Bugtraq: 20031209 Internet Explorer URL parsing vulnerability (Google Search)
http://www.securityfocus.com/archive/1/346948
Cert/CC Advisory: TA04-033A
http://www.us-cert.gov/cas/techalerts/TA04-033A.html
CERT/CC vulnerability note: VU#652278
http://www.kb.cert.org/vuls/id/652278
http://www.zapthedingbat.com/security/ex01/vun1.htm
Microsoft Security Bulletin: MS04-004
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-004
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A490
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A491
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A510
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A511
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A512
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A513
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A526
XForce ISS Database: ie-domain-url-spoofing(13935)
https://exchange.xforce.ibmcloud.com/vulnerabilities/13935
Common Vulnerability Exposure (CVE) ID: CVE-2003-1026
Bugtraq: 20031125 BackToFramedJpu - a successor of BackToJpu attack (Google Search)
http://marc.info/?l=bugtraq&m=106979349517578&w=2
Bugtraq: 20031201 Comments on 5 IE vulnerabilities (Google Search)
http://marc.info/?l=bugtraq&m=107038202225587&w=2
CERT/CC vulnerability note: VU#784102
http://www.kb.cert.org/vuls/id/784102
http://www.safecenter.net/UMBRELLAWEBV4/BackToFramedJpu
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A630
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A643
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A687
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A689
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A745
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A774
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A805
XForce ISS Database: ie-subframe-xss(13846)
https://exchange.xforce.ibmcloud.com/vulnerabilities/13846
Common Vulnerability Exposure (CVE) ID: CVE-2003-1027
Bugtraq: 20031125 HijackClickV2 - a successor of HijackClick attack (Google Search)
http://marc.info/?l=bugtraq&m=106979479719446&w=2
http://www.safecenter.net/UMBRELLAWEBV4/HijackClickV2
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A527
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A529
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A530
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A531
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A532
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A534
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A629
XForce ISS Database: ie-method-perform-actions(13844)
https://exchange.xforce.ibmcloud.com/vulnerabilities/13844
Common Vulnerability Exposure (CVE) ID: CVE-2005-0553
Cert/CC Advisory: TA05-102A
http://www.us-cert.gov/cas/techalerts/TA05-102A.html
CERT/CC vulnerability note: VU#774338
http://www.kb.cert.org/vuls/id/774338
http://www.idefense.com/application/poi/display?id=228&type=vulnerabilities
Microsoft Security Bulletin: MS05-020
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-020
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1695
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3100
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3752
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4874
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4985
http://secunia.com/advisories/14922/
XForce ISS Database: ie-dhtml-bo(19831)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19831
Common Vulnerability Exposure (CVE) ID: CVE-2005-0554
CERT/CC vulnerability note: VU#756122
http://www.kb.cert.org/vuls/id/756122
http://www.idefense.com/application/poi/display?id=229&type=vulnerabilities
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1196
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2253
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2559
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3817
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A789
Common Vulnerability Exposure (CVE) ID: CVE-2005-0555
CERT/CC vulnerability note: VU#222050
http://www.kb.cert.org/vuls/id/222050
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2077
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2786
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3157
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3926
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4674
XForce ISS Database: ie-content-advisor-bo(19842)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19842
CopyrightCopyright (C) 2002 Michael Scheidell

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.