Microsoft Internet Explorer vulnerabilities

1,594 known vulnerabilities affecting microsoft/internet_explorer.

Total CVEs

1,594

CISA KEV

actively exploited

Public exploits

364

Exploited in wild

Severity breakdown

CRITICAL690HIGH450MEDIUM404LOW50

Vulnerabilities

Page 42 of 80

CVE-2014-0306CRITICALCVSS 9.3v8v92014-03-12

CVE-2014-0306 [CRITICAL] CWE-119 CVE-2014-0306: Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a den Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability."

nvd

CVE-2013-7331MEDIUMCVSS 6.5KEVPoCv6v7+4 more2014-02-26

CVE-2013-7331 [MEDIUM] CWE-200 CVE-2013-7331: The Microsoft.XMLDOM ActiveX control in Microsoft Windows 8.1 and earlier allows remote attackers to The Microsoft.XMLDOM ActiveX control in Microsoft Windows 8.1 and earlier allows remote attackers to determine the existence of local pathnames, UNC share pathnames, intranet hostnames, and intranet IP addresses by examining error codes, as demonstrated by a res:// URL, and exploited in the wild in February 2014.

nvd

CVE-2014-0322HIGHCVSS 8.8KEVPoCv9v102014-02-14

CVE-2014-0322 [HIGH] CWE-416 CVE-2014-0322: Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to exec Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code via vectors involving crafted JavaScript code, CMarkup, and the onpropertychange attribute of a script element, as exploited in the wild in January and February 2014.

nvd

CVE-2014-0279CRITICALCVSS 9.3v82014-02-12

CVE-2014-0279 [CRITICAL] CVE-2014-0279: Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code or cause a denial of Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-0277 and CVE-2014-0278.

nvd

CVE-2014-0278CRITICALCVSS 9.3v82014-02-12

CVE-2014-0278 [CRITICAL] CVE-2014-0278: Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code or cause a denial of Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-0277 and CVE-2014-0279.

nvd

CVE-2014-0287CRITICALCVSS 9.3v8v9+2 more2014-02-12

CVE-2014-0287 [CRITICAL] CVE-2014-0287: Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-0281.

nvd

CVE-2014-0272CRITICALCVSS 9.3v8v9+1 more2014-02-12

CVE-2014-0272 [CRITICAL] CWE-119 CVE-2014-0272: Microsoft Internet Explorer 8 through 10 allows remote attackers to execute arbitrary code or cause Microsoft Internet Explorer 8 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability."

nvd

CVE-2014-0273CRITICALCVSS 9.3v9v10+1 more2014-02-12

CVE-2014-0273 [CRITICAL] CVE-2014-0273: Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-0270, CVE-2014-0274, and CVE-2014-0288.

nvd

CVE-2014-0275CRITICALCVSS 9.3v6v7+4 more2014-02-12

CVE-2014-0275 [CRITICAL] CWE-119 CVE-2014-0275: Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-0285 and CVE-2014-0286.

nvd

CVE-2014-0267CRITICALCVSS 9.3v112014-02-12

CVE-2014-0267 [CRITICAL] CWE-119 CVE-2014-0267: Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-0289 and CVE-2014-0290.

nvd

CVE-2014-0276CRITICALCVSS 9.3v8v92014-02-12

CVE-2014-0276 [CRITICAL] CWE-119 CVE-2014-0276: Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a den Microsoft Internet Explorer 8 and 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability."

nvd

CVE-2014-0288CRITICALCVSS 9.3v9v10+1 more2014-02-12

CVE-2014-0288 [CRITICAL] CVE-2014-0288: Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-0270, CVE-2014-0273, and CVE-2014-0274.

nvd

CVE-2014-0290CRITICALCVSS 9.3v112014-02-12

CVE-2014-0290 [CRITICAL] CVE-2014-0290: Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-0267 and CVE-2014-0289.

nvd

CVE-2014-0289CRITICALCVSS 9.3v112014-02-12

CVE-2014-0289 [CRITICAL] CVE-2014-0289: Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-0267 and CVE-2014-0290.

nvd

CVE-2014-0281CRITICALCVSS 9.3v8v9+2 more2014-02-12

CVE-2014-0281 [CRITICAL] CWE-119 CVE-2014-0281: Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-0287.

nvd

CVE-2014-0285CRITICALCVSS 9.3v6v7+4 more2014-02-12

CVE-2014-0285 [CRITICAL] CVE-2014-0285: Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-0275 and CVE-2014-0286.

nvd

CVE-2014-0271CRITICALCVSS 9.3v6v7+4 more2014-02-12

CVE-2014-0271 [CRITICAL] CWE-119 CVE-2014-0271: The VBScript engine in Microsoft Internet Explorer 6 through 11, and VBScript 5.6 through 5.8, allow The VBScript engine in Microsoft Internet Explorer 6 through 11, and VBScript 5.6 through 5.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "VBScript Memory Corruption Vulnerability."

nvd

CVE-2014-0283CRITICALCVSS 9.3v92014-02-12

CVE-2014-0283 [CRITICAL] CWE-119 CVE-2014-0283: Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability."

nvd

CVE-2014-0284CRITICALCVSS 9.3v9v102014-02-12

CVE-2014-0284 [CRITICAL] CWE-119 CVE-2014-0284: Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a de Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability."

nvd

CVE-2014-0270CRITICALCVSS 9.3v9v10+1 more2014-02-12

CVE-2014-0270 [CRITICAL] CWE-119 CVE-2014-0270: Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-0273, CVE-2014-0274, and CVE-2014-0288.

nvd

← Previous42 / 80Next →