CVSS: 7.5EPSS: 39%CPEs: 8EXPL: 1CVE-2002-0153 – Apple Mac OS Internet Explorer 3/4/5 - File Execution
https://notcve.org/view.php?id=CVE-2002-0153
22 Apr 2002 — Internet Explorer 5.1 for Macintosh allows remote attackers to bypass security checks and invoke local AppleScripts within a specific HTML element, aka the "Local Applescript Invocation" vulnerability. Internet Explorer 5.1 para Macintosh permite a atacantes remotos evadir comprobaciones de seguridad e invocar AppleScripts locales dentro de un elemento HTML específico. Tambien conocido como vulnerabilidad de "Invocación local de AppleScript" • https://www.exploit-db.com/exploits/21238 •
CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 0CVE-2001-1497
https://notcve.org/view.php?id=CVE-2001-1497
31 Dec 2001 — Microsoft Internet Explorer 4.0 through 6.0 could allow local users to differentiate between alphanumeric and non-alphanumeric characters used in a password by pressing certain control keys that jump between non-alphanumeric characters, which makes it easier to conduct a brute-force password guessing attack. • http://www.iss.net/security_center/static/7592.php •
CVSS: 9.8EPSS: 10%CPEs: 1EXPL: 0CVE-2001-0665
https://notcve.org/view.php?id=CVE-2001-0665
30 Oct 2001 — Internet Explorer 6 and earlier allows remote attackers to cause certain HTTP requests to be automatically executed and appear to come from the user, which could allow attackers to gain privileges or execute operations within web-based services, aka the "HTTP Request Encoding vulnerability." • http://www.osvdb.org/1972 •
CVSS: 8.8EPSS: 14%CPEs: 2EXPL: 1CVE-2000-1061 – Microsoft Virtual Machine 2000/3100/3200/3300 Series - 'com.ms.activeX.ActiveXComponent' Arbitrary Program Execution
https://notcve.org/view.php?id=CVE-2000-1061
11 Dec 2000 — Microsoft Virtual Machine (VM) in Internet Explorer 4.x and 5.x allows an unsigned applet to create and use ActiveX controls, which allows a remote attacker to bypass Internet Explorer's security settings and execute arbitrary commands via a malicious web page or email, aka the "Microsoft VM ActiveX Component" vulnerability. • https://www.exploit-db.com/exploits/20266 •
CVSS: 2.6EPSS: 16%CPEs: 9EXPL: 0CVE-2000-0768
https://notcve.org/view.php?id=CVE-2000-0768
13 Oct 2000 — A function in Internet Explorer 4.x and 5.x does not properly verify the domain of a frame within a browser window, which allows a remote attacker to read client files, aka a variant of the "Frame Domain Verification" vulnerability. • http://www.securityfocus.com/bid/1564 •
CVSS: 5.9EPSS: 2%CPEs: 14EXPL: 0CVE-2000-0518
https://notcve.org/view.php?id=CVE-2000-0518
05 Jun 2000 — Internet Explorer 4.x and 5.x does not properly verify all contents of an SSL certificate if a connection is made to the server via an image or a frame, aka one of two different "SSL Certificate Validation" vulnerabilities. • http://www.acrossecurity.com/aspr/ASPR-1999-12-15-1-PUB.txt •
CVSS: 7.4EPSS: 2%CPEs: 14EXPL: 0CVE-2000-0519
https://notcve.org/view.php?id=CVE-2000-0519
05 Jun 2000 — Internet Explorer 4.x and 5.x does not properly re-validate an SSL certificate if the user establishes a new SSL session with the same server during the same Internet Explorer session, aka one of two different "SSL Certificate Validation" vulnerabilities. • http://www.acrossecurity.com/aspr/ASPR-1999-12-15-1-PUB.txt •
CVSS: 7.5EPSS: 1%CPEs: 9EXPL: 0CVE-2000-0162
https://notcve.org/view.php?id=CVE-2000-0162
18 Feb 2000 — The Microsoft virtual machine (VM) in Internet Explorer 4.x and 5.x allows a remote attacker to read files via a malicious Java applet that escapes the Java sandbox, aka the "VM File Reading" vulnerability. • https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-011 •
CVSS: 7.5EPSS: 21%CPEs: 11EXPL: 1CVE-2000-0028 – Microsoft Internet Explorer 4/5/5.5/5.0.1 - external.NavigateAndFind() Cross-Frame
https://notcve.org/view.php?id=CVE-2000-0028
23 Dec 1999 — Internet Explorer 5.0 and 5.01 allows remote attackers to bypass the cross frame security policy and read files via the external.NavigateAndFind function. • https://www.exploit-db.com/exploits/19686 •
CVSS: 8.8EPSS: 8%CPEs: 20EXPL: 1CVE-2000-0329 – Microsoft Internet Explorer 4.x/5 / Outlook 2000 0/98 0/Express 4.x - ActiveX '.CAB' File Execution
https://notcve.org/view.php?id=CVE-2000-0329
11 Nov 1999 — A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML mail, aka the "Active Setup Control" vulnerability. • https://www.exploit-db.com/exploits/19603 •