CVSS: 9.8EPSS: 9%CPEs: 9EXPL: 0CVE-2003-0115
https://notcve.org/view.php?id=CVE-2003-0115
02 May 2003 — Microsoft Internet Explorer 5.01, 5.5 and 6.0 does not properly check parameters that are passed during third party rendering, which could allow remote attackers to execute arbitrary web script, aka the "Third Party Plugin Rendering" vulnerability, a different vulnerability than CVE-2003-0233. Microsoft Internet Explorer 5.01, 5.5 y 6.0 no verifica adecuadamente parámetros que son pasados mientras dibujan componentes de terceros, lo que podría permitir a atacantes remotos ejecutar script web arbitrario, tam... • http://www.iss.net/security_center/static/11848.php •
CVSS: 9.8EPSS: 13%CPEs: 9EXPL: 0CVE-2003-0233
https://notcve.org/view.php?id=CVE-2003-0233
02 May 2003 — Heap-based buffer overflow in plugin.ocx for Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to execute arbitrary code via the Load() method, a different vulnerability than CVE-2003-0115. Desbordamiento de búfer basado en el montículo (heap) en plugin.ocx de Internet Explorer 5.01, 5.5 y 6.0 permite a atacantes remotos ejecutar código arbitrari mediante el método Load(), una vulnerabilidad distinta de CAN-2003-0115. • http://marc.info/?l=bugtraq&m=105120164927952&w=2 •
CVSS: 9.8EPSS: 36%CPEs: 9EXPL: 1CVE-2003-0113 – Microsoft Internet Explorer 5 - Remote 'URLMON.dll' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2003-0113
26 Apr 2003 — Buffer overflow in URLMON.DLL in Microsoft Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to execute arbitrary code via an HTTP response containing long values in (1) Content-type and (2) Content-encoding fields. Desbordamiento de búfer en URLMON.DLL en Microsoft Internet Explorer 5.01, 5.5 y 6.0 permite a atacantes remotos ejecutar código arbitrario mediante una respuesta HTTP conteniendo valores largos en ciertos campos de cabecera. • https://www.exploit-db.com/exploits/22530 •
CVSS: 9.8EPSS: 30%CPEs: 9EXPL: 0CVE-2003-0114
https://notcve.org/view.php?id=CVE-2003-0114
26 Apr 2003 — The file upload control in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to automatically upload files from the local system via a web page containing a script to upload the files. El control de carga (upload) de ficheros en Microsoft Internet Explorer 5.01, 5.5 y 6.0 permite a atacantes remotos cargar ficheros automáticamente del sistema de ficheros local mediante una página web conteniendo un script para cargar los ficheros. • http://marc.info/?l=bugtraq&m=104429340817718&w=2 •
CVSS: 5.3EPSS: 25%CPEs: 9EXPL: 1CVE-2003-0116
https://notcve.org/view.php?id=CVE-2003-0116
26 Apr 2003 — Microsoft Internet Explorer 5.01, 5.5 and 6.0 does not properly check the Cascading Style Sheet input parameter for Modal dialogs, which allows remote attackers to read files on the local system via a web page containing script that creates a dialog and then accesses the target files, aka "Modal Dialog script execution." Microsoft Internet Explorer 5.01, 5.5 y 6.0 no comprueba adecuadamente el parámetro de entrada de hoja de estilo en cascada (CSS) en diálogos modales, lo que permite a atacantes remotos lee... • http://www.kb.cert.org/vuls/id/244729 •
CVSS: 7.5EPSS: 11%CPEs: 9EXPL: 0CVE-2003-1326
https://notcve.org/view.php?id=CVE-2003-1326
19 Feb 2003 — Microsoft Internet Explorer 5.5 and 6.0 allows remote attackers to bypass the cross-domain security model to run malicious script or arbitrary programs via dialog boxes, aka "Improper Cross Domain Security Validation with dialog box." Microsoft Internet Explorer 5.01, 5.5 y 6.0 permite a atacantes remotos evitar el modelo de seguridad entre dominios (cros-domain) para correr script malicioso o programas arbitrarios mediante cuadros de díálogo. También conocida como "Validacíon de Seguridad Entre Dominios in... • http://www.ciac.org/ciac/bulletins/n-038.shtml •
CVSS: 8.8EPSS: 43%CPEs: 9EXPL: 1CVE-2003-1328 – Microsoft Internet Explorer 5 - ShowHelp Arbitrary Command Execution
https://notcve.org/view.php?id=CVE-2003-1328
19 Feb 2003 — The showHelp() function in Microsoft Internet Explorer 5.01, 5.5, and 6.0 supports certain types of pluggable protocols that allow remote attackers to bypass the cross-domain security model and execute arbitrary code, aka "Improper Cross Domain Security Validation with ShowHelp functionality." La función showHelp() en Microsoft Internet Explorer 5.5 y 6.0 soporta ciertos tipos de protocolos enchufables (añadibles) qeu permiten a atacantes remotos evitar el modelo de seguridad de cruce de dominios y ejecutar... • https://www.exploit-db.com/exploits/22226 •
CVSS: 5.3EPSS: 33%CPEs: 4EXPL: 1CVE-2002-1671
https://notcve.org/view.php?id=CVE-2002-1671
31 Dec 2002 — Microsoft Internet Explorer 5.0, 5.01, and 5.5 allows remote attackers to monitor the contents of the clipboard via the getData method of the clipboardData object. • http://online.securityfocus.com/archive/1/250387/2002-10-11/2002-10-17/2 •
CVSS: 8.1EPSS: 39%CPEs: 4EXPL: 2CVE-2002-1688 – Microsoft Internet Explorer 5.5/6.0 - History List Script Injection
https://notcve.org/view.php?id=CVE-2002-1688
31 Dec 2002 — The browser history feature in Microsoft Internet Explorer 5.5 through 6.0 allows remote attackers to execute arbitrary script as other users and steal authentication information via cookies by injecting JavaScript into the URL, which is executed when the user hits the Back button. • https://www.exploit-db.com/exploits/21376 •
CVSS: 6.5EPSS: 38%CPEs: 2EXPL: 2CVE-2002-1705 – Microsoft Internet Explorer 5/6 - CSSText Bold Font Denial of Service
https://notcve.org/view.php?id=CVE-2002-1705
31 Dec 2002 — Microsoft Internet Explorer 5.5 through 6.0 allows remote attackers to cause a denial of service (crash) via a Cascading Style Sheet (CSS) with the p{cssText} element declared and a bold font weight. • https://www.exploit-db.com/exploits/21556 •