CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2002-0242
https://notcve.org/view.php?id=CVE-2002-0242
Cross-site scripting vulnerability in Internet Explorer 6 earlier allows remote attackers to execute arbitrary script via an Extended HTML Form, whose output from the remote server is not properly cleansed. Vulnerabilidad de secuencias de comandos en sitios cruzados en Internet Explorer 6 y anteriores permite que atacante remotos ejecuten código arbitrario por medio de un formulario HTML extendido, cuya salida del servidor remoto no se ha aclarado adecuadamente. • http://marc.info/?l=bugtraq&m=101309907709138&w=2 •
CVSS: 7.5EPSS: 2%CPEs: 8EXPL: 0CVE-2002-0269
https://notcve.org/view.php?id=CVE-2002-0269
Internet Explorer 5.x and 6 interprets an object as an HTML document even when its MIME Content-Type is text/plain, which could allow remote attackers to execute arbitrary script in documents that the user does not expect, possibly through web applications that use a text/plain type to prevent cross-site scripting attacks. uno dos tres • http://marc.info/?l=bugtraq&m=101363764421623&w=2 •
CVSS: 7.5EPSS: 74%CPEs: 6EXPL: 0CVE-2002-0078
https://notcve.org/view.php?id=CVE-2002-0078
The zone determination function in Microsoft Internet Explorer 5.5 and 6.0 allows remote attackers to run scripts in the Local Computer zone by embedding the script in a cookie, aka the "Cookie-based Script Execution" vulnerability. La determinación de zona en Microsoft Internet Explorer 5.5 y 6.0 permite a atacantes remotos ejecutar scripts en la zona 'Ordenador Local' incrustando el script en una cookie. • http://marc.info/?l=bugtraq&m=101781180528301&w=2 http://www.iss.net/security_center/static/8701.php http://www.osvdb.org/3029 http://www.securityfocus.com/bid/4392 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-015 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A96 •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2002-0136
https://notcve.org/view.php?id=CVE-2002-0136
Microsoft Internet Explorer 5.5 on Windows 98 allows remote web pages to cause a denial of service (hang) via extremely long values for form fields such as INPUT and TEXTAREA, which can be automatically filled via Javascript. Microsoft Internet Explorer 5.5 bajo Windows 98 permite a páginas web remotas causar denegación de servicio (por cuelgue de la aplicación) mediante valores muy largos en componentes de formulario como INPUT y TEXTAREA, los cuales pueden ser rellenados automáticamente mediante Javascript. • http://online.securityfocus.com/archive/1/250592 http://www.securityfocus.com/bid/3892 https://exchange.xforce.ibmcloud.com/vulnerabilities/7938 •
CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0CVE-2002-0101
https://notcve.org/view.php?id=CVE-2002-0101
Microsoft Internet Explorer 6.0 and earlier allows local users to cause a denial of service via an infinite loop for modeless dialogs showModelessDialog, which causes CPU usage while the focus for the dialog is not released. Microsoft Internet Explorer 6.0 y anteriores permiten a usuarios locales causar una negación de servicio vía bucle infinito para cuadros de diálogo sin modo (showModelessDialog), que causaran que el uso de CPU no se libere mientras el foco para el diálogo no es liberado. • http://marc.info/?l=bugtraq&m=101039104608083&w=2 http://www.iss.net/security_center/static/7826.php http://www.securityfocus.com/bid/3789 •