CVSS: 7.6EPSS: 22%CPEs: 3EXPL: 0CVE-2016-0113 – Microsoft Internet Explorer CTravelEntry Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2016-0113
08 Mar 2016 — Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0105, CVE-2016-0107, CVE-2016-0111, and CVE-2016-0112. Microsoft Internet Explorer 9 hasta la versión 11 permite a atacantes remotos ejecutar código arbitrario o provocar una denegación de servicio (corrupción de memoria) a través de un sitio web mani... • http://www.securityfocus.com/bid/84011 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 21%CPEs: 3EXPL: 0CVE-2016-0068
https://notcve.org/view.php?id=CVE-2016-0068
18 Feb 2016 — Microsoft Internet Explorer 9 through 11 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka "Internet Explorer Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0069. Microsoft Internet Explorer 9 hasta la versión 11 permite a atacantes remotos eludir la Same Origin Policy a través de vectores no especificados, también conocido como "Internet Explorer Elevation of Privilege Vulnerability", una vulnerabilidad diferente a CVE-2016-0069. • http://www.securitytracker.com/id/1034971 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 25%CPEs: 3EXPL: 0CVE-2016-0069
https://notcve.org/view.php?id=CVE-2016-0069
18 Feb 2016 — Microsoft Internet Explorer 9 through 11 allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka "Internet Explorer Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0068. Microsoft Internet Explorer 9 hasta la versión 11 permite a atacantes remotos eludir la Same Origin Policy a través de vectores no especificados, también conocido como "Internet Explorer Elevation of Privilege Vulnerability", una vulnerabilidad diferente a CVE-2016-0068. • http://jvn.jp/en/jp/JVN78383854/index.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 62%CPEs: 12EXPL: 2CVE-2016-0041 – Microsoft Office - OLE Multiple DLL Side Loading Vulnerabilities (MS15-132/MS16-014/MS16-025/MS16-041/MS16-070)
https://notcve.org/view.php?id=CVE-2016-0041
10 Feb 2016 — Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold and 1511, and Internet Explorer 10 and 11 mishandle DLL loading, which allows local users to gain privileges via a crafted application, aka "DLL Loading Remote Code Execution Vulnerability." Microsoft Windows Vista SP2, Windows Server 2008 SP2 y R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold y R2, Windows RT 8.1, Windows 10 Gold y 1511 e ... • https://packetstorm.news/files/id/139671 •
CVSS: 4.3EPSS: 18%CPEs: 3EXPL: 0CVE-2016-0059
https://notcve.org/view.php?id=CVE-2016-0059
10 Feb 2016 — The Hyperlink Object Library in Microsoft Internet Explorer 9 through 11 allows remote attackers to obtain sensitive information from process memory via a crafted URL in a (1) e-mail message or (2) Office document, aka "Internet Explorer Information Disclosure Vulnerability." El Hyperlink Object Library en Microsoft Internet Explorer 9 hasta la versión 11 permite a atacantes remotos obtener información sensible desde la memoria de proceso a través de una URL manipulada en un (1) mensaje e-mail o (2) documen... • http://www.securitytracker.com/id/1034971 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 25%CPEs: 1EXPL: 0CVE-2016-0064
https://notcve.org/view.php?id=CVE-2016-0064
10 Feb 2016 — Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability." Microsoft Internet Explorer 10 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de un sitio web manipulado, también conocida como "Internet Explorer Memory Corruption Vulnerability". • http://www.securitytracker.com/id/1034971 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 25%CPEs: 3EXPL: 0CVE-2016-0067
https://notcve.org/view.php?id=CVE-2016-0067
10 Feb 2016 — Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0060, CVE-2016-0061, CVE-2016-0063, and CVE-2016-0072. Microsoft Internet Explorer 9 hasta la versión 11 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de un sitio web manipu... • http://www.securitytracker.com/id/1034971 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 8%CPEs: 4EXPL: 0CVE-2016-0077
https://notcve.org/view.php?id=CVE-2016-0077
10 Feb 2016 — Microsoft Internet Explorer 9 through 11 and Microsoft Edge misparse HTTP responses, which allows remote attackers to spoof web sites via a crafted URL, aka "Microsoft Browser Spoofing Vulnerability." Microsoft Internet Explorer 9 hasta la versión 11 y Microsoft Edge no analiza correctamente la gramática de respuestas HTTP, lo que permite a atacantes remotos suplantar sitios web a través de una URL manipulada, también conocida como "Microsoft Browser Spoofing Vulnerability". • http://www.securitytracker.com/id/1034971 • CWE-19: Data Processing Errors •
CVSS: 9.3EPSS: 37%CPEs: 4EXPL: 0CVE-2016-0060 – Microsoft Edge Text Node Type Confusion Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2016-0060
10 Feb 2016 — Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0061, CVE-2016-0063, CVE-2016-0067, and CVE-2016-0072. Microsoft Internet Explorer 9 hasta la versión 11 y Microsoft Edge permiten a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memo... • http://www.securitytracker.com/id/1034971 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 44%CPEs: 3EXPL: 4CVE-2016-0063 – Microsoft Internet Explorer DOMImplementation Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2016-0063
10 Feb 2016 — Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0060, CVE-2016-0061, CVE-2016-0067, and CVE-2016-0072. Microsoft Internet Explorer 9 hasta la versión 11 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de un sitio web manipu... • https://packetstorm.news/files/id/139916 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •