CVSS: 7.5EPSS: 95%CPEs: 5EXPL: 1CVE-2005-0553 – Microsoft Internet Explorer 5.0.1 - DHTML Object Race Condition Memory Corruption
https://notcve.org/view.php?id=CVE-2005-0553
13 Apr 2005 — Race condition in the memory management routines in the DHTML object processor in Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to execute arbitrary code via a malicious web page or HTML e-mail, aka "DHTML Object Memory Corruption Vulnerability". • https://www.exploit-db.com/exploits/25386 •
CVSS: 8.8EPSS: 95%CPEs: 3EXPL: 1CVE-2005-0554 – Microsoft Internet Explorer - DHTML Object Handling (MS05-020)
https://notcve.org/view.php?id=CVE-2005-0554
13 Apr 2005 — Buffer overflow in the URL processor of Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a URL with a long hostname, aka "URL Parsing Memory Corruption Vulnerability." • https://www.exploit-db.com/exploits/931 •
CVSS: 8.8EPSS: 95%CPEs: 3EXPL: 1CVE-2005-0555 – Microsoft Internet Explorer 5.0.1 - Content Advisor File Handling Buffer Overflow (MS05-020)
https://notcve.org/view.php?id=CVE-2005-0555
12 Apr 2005 — Buffer overflow in the Content Advisor in Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to execute arbitrary code via a crafted Content Advisor file, aka "Content Advisor Memory Corruption Vulnerability." • https://www.exploit-db.com/exploits/25385 •
CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2005-0954
https://notcve.org/view.php?id=CVE-2005-0954
03 Apr 2005 — Windows Explorer and Internet Explorer in Windows 2000 SP1 allows remote attackers to cause a denial of service (CPU consumption) via a malformed Windows Metafile (WMF) file. • http://marc.info/?l=bugtraq&m=111231106513788&w=2 •
CVSS: 6.5EPSS: 31%CPEs: 3EXPL: 1CVE-2005-0500
https://notcve.org/view.php?id=CVE-2005-0500
21 Feb 2005 — Internet Explorer 6.0 on Windows XP SP2 allows remote attackers to spoof the domain name of a URL in a titlebar for a script-initiated popup window, which could facilitate phishing attacks. • http://marc.info/?l=full-disclosure&m=110895997201027&w=2 •
CVSS: 9.8EPSS: 92%CPEs: 35EXPL: 2CVE-2005-0053 – Microsoft Internet Explorer 5.x - Valid File Drag and Drop Embedded Code (MS04-038)
https://notcve.org/view.php?id=CVE-2005-0053
08 Feb 2005 — Internet Explorer 5.01, 5.5, and 6 allows remote attackers to execute arbitrary code via drag and drop events, aka the "Drag-and-Drop Vulnerability." Internet Explorer 5.01, 5.5 y 6 permite a los atacantes remotos ejecutar código arbitrario mediante eventos de arrastrar y soltar, también conocidos como "Vulnerabilidad de arrastrar y soltar". • https://www.exploit-db.com/exploits/24693 •
CVSS: 8.1EPSS: 92%CPEs: 3EXPL: 0CVE-2005-0054
https://notcve.org/view.php?id=CVE-2005-0054
08 Feb 2005 — Internet Explorer 5.01, 5.5, and 6 allows remote attackers to spoof a less restrictive security zone and execute arbitrary code via an HTML page containing URLs that contain hostnames that have been double hex encoded, which are decoded twice to generate a malicious hostname, aka the "URL Decoding Zone Spoofing Vulnerability." • http://marc.info/?l=bugtraq&m=110796851002781&w=2 •
CVSS: 9.8EPSS: 95%CPEs: 11EXPL: 0CVE-2005-0055
https://notcve.org/view.php?id=CVE-2005-0055
08 Feb 2005 — Internet Explorer 5.01, 5.5, and 6 does not properly validate buffers when handling certain DHTML methods including the createControlRange Javascript function, which allows remote attackers to execute arbitrary code, aka the "DHTML Method Heap Memory Corruption Vulnerability." • http://secunia.com/advisories/11165 •
CVSS: 8.1EPSS: 70%CPEs: 3EXPL: 1CVE-2005-0056
https://notcve.org/view.php?id=CVE-2005-0056
08 Feb 2005 — Internet Explorer 5.01, 5.5, and 6 does not properly validate certain URLs in Channel Definition Format (CDF) files, which allows remote attackers to obtain sensitive information or execute arbitrary code, aka the "Channel Definition Format (CDF) Cross Domain Vulnerability." • http://securitytracker.com/id?1013126 •
CVSS: 7.8EPSS: 93%CPEs: 2EXPL: 2CVE-2004-1043 – Microsoft Internet Explorer (Windows XP SP2) - HTML Help Control Local Zone Bypass
https://notcve.org/view.php?id=CVE-2004-1043
31 Dec 2004 — Internet Explorer 6.0 on Windows XP SP2 allows remote attackers to execute arbitrary code by using the "Related Topics" command in the Help ActiveX Control (hhctrl.ocx) to open a Help popup window containing the PCHealth tools.htm file in the local zone and injecting Javascript to be executed, as demonstrated using "writehta.txt" and the ADODB recordset, which saves a .HTA file to the local system, aka the "HTML Help ActiveX control Cross Domain Vulnerability." • https://packetstorm.news/files/id/148307 •