Internet Explorer Vulnerabilities


The following list includes some of the most critical Internet Explorer vulnerabilities known to the security community. In any case you find that there is anything missing in this list, please let us know and we will update it as soon as possible.
  1. Microsoft Internet Explorer SetExpandedClipRect Code Execution Vulnerability
  2. Microsoft Internet Explorer swapNode Handling Code Execution Vulnerability
  3. Microsoft Internet Explorer Select Element Insufficient Type Checking Code Execution Vulnerability
  4. Internet Explorer Select Element Cache Code Execution Vulnerability
  5. Microsoft Internet Explorer Protected Mode Bypass Vulnerability
  6. Microsoft Internet Explorer 9 STYLE Object Parsing Code Execution Vulnerability
  7. Microsoft Internet Explorer XSLT SetViewSlave Code Execution Vulnerability
  8. Microsoft Internet Explorer layout-grid-char style Code Execution Vulnerability
  9. Microsoft Internet Explorer DOM Modification Race Code Execution Vulnerability
  10. Microsoft Internet Explorer HTTP 302 Redirect Code Execution Vulnerability
  11. Microsoft Internet Explorer selection.empty Code Execution Vulnerability
  12. Microsoft Internet Explorer vgx.dll imagedata Code Execution Vulnerability
  13. Microsoft Internet Explorer Use-After-Free Memory Corruption Vulnerability
  14. Microsoft Internet Explorer Property Change Memory Corruption Vulnerability
  15. Microsoft Internet Explorer onPropertyChange Code Execution Vulnerability
  16. Microsoft Internet Explorer mshtml.dll Dangling Pointer Vulnerability
  17. Microsoft Internet Explorer Animation Use-after-free Vulnerability
  18. Microsoft Internet Explorer HTML+Time Element outerText Code Execution Vulnerability
  19. Microsoft Internet Explorer Recursive Select Element Code Execution Vulnerability
  20. Microsoft Internet Explorer HTML Object Memory Corruption Vulnerability
  21. Microsoft Internet Explorer CSS Style Table Layout Uninitialized Memory Vulnerability
  22. Microsoft Internet Explorer MSADO CacheSize Code Execution Vulnerability
  23. Microsoft Internet Explorer EOT File hdmx Parsing Code Execution Vulnerability
  24. Microsoft Internet Explorer Stylesheet PrivateFind Code Execution Vulnerability
  25. Microsoft Internet Explorer CIframeElement Object Use after free Vulnerability
  26. Microsoft Internet Explorer boundElements Property Use-after-free Vulnerability
  27. Firefox, Internet Explorer, Chrome and Opera Denial Of Service vulnerabilities
  28. Microsoft Internet Explorer Stylesheet Array Removal Code Execution Vulnerability
  29. Microsoft Internet Explorer onreadystatechange Use After Free Vulnerability
  30. Microsoft Internet Explorer TIME2 Behavior Remote Code Execution Vulnerability
  31. Microsoft Internet Explorer Dynamic OBJECT Tag and URLMON Sniffing Vulnerabilities
  32. Internet Explorer Multiple Remote Code Execution Vulnerabilities
  33. Microsoft Internet Explorer JScript arguments Invocation Memory Corruption
  34. Microsoft Internet Explorer Use After Free Vulnerability
  35. Microsoft Internet Explorer CSS Behavior Memory Corruption Vulnerability
  36. Microsoft Internet Explorer Memory Corruption Vulnerability
  37. Microsoft Internet Explorer 8 Pointer Code Execution Vulnerability (MS09-019)
  38. Microsoft Internet Explorer setCapture Memory Corruption Vulnerability (MS09-019)
  39. Microsoft Internet Explorer Security Zone Restrictions Bypass
  40. Microsoft Internet Explorer onreadystatechange Memory Corruption Vulnerability (MS09-019)
  41. Microsoft Internet Explorer Event Handler Memory Corruption Vulnerability (MS09-019)
  42. Microsoft Internet Explorer DHTML Handling Memory Corruption Vulnerability (MS09-019)
  43. Microsoft Internet Explorer Concurrent Ajax Request Memory Corruption (MS09-019)
  44. Internet Explorer 8.0 Beta 2 Anti-XSS Filter Vulnerabilities
  45. Microsoft Internet Explorer HTML Tag Long File Name Extension Stack Buffer Overflow Vulnerability (MS08-073)
  46. Cumulative Security Update for Internet Explorer (MS08-058)
  47. Microsoft Windows GDI+ Gradient Fill Heap Overflow Vulnerability
  48. Internet Explorer Zone Elevation Restrictions Bypass and Security Zone Restrictions Bypass (MS08-043)
  49. Cumulative Security Update for Internet Explorer (MS08-045)
  50. Cumulative Security Update for Internet Explorer (MS08-031)
  51. Cumulative Security Update for Internet Explorer (MS08-024)
  52. Security Update of ActiveX Kill Bits (MS08-023)
  53. Microsoft Internet Explorer FTP Command Injection Vulnerability
  54. Microsoft Internet Explorer Property Memory Corruption Vulnerability
  55. Microsoft Internet Explorer JavaScript setExpression Heap Corruption Vulnerability
  56. Cumulative Security Update for Internet Explorer (MS07-069)
  57. Cumulative Security Update for Internet Explorer (MS07-057)
  58. Cumulative Security Update for Internet Explorer (MS07-045)
  59. Microsoft XML Core Services XMLDOM Memory Corruption Vulnerability
  60. Phishing Using IE7 Local Resource Vulnerability
  61. Multiple Browsers Cross Domain Charset Inheritance Vulnerability
  62. Microsoft \wininet.dll\ FTP Reply Null Termination Heap Corruption Vulnerability
  63. MS Internet Explorer 6 Null Pointer Dereference Exploit (mshtml.dll)
  64. Microsoft Windows VML Element Integer Overflow
  65. Internet Explorer 7 "mhtml:" Redirection Information Disclosure
  66. Internet Explorer \ADODB.Connection\ Object \Execute\ Function DoS (Exploit)
  67. Internet Explorer VML Buffer Overflow Download Exec (Exploit)
  68. Internet Explorer COM Object Heap Overflow Download Exec (Exploit)
  69. Internet Explorer Compressed Content URL Heap Overflow 2
  70. Microsoft Internet Explorer daxctle.ocx Heap Overflow
  71. Internet Explorer Compressed Content URL Heap Overflow
  72. Internet Explorer Multiple COM Objects Color Property DoS
  73. Windows 2000 Multiple COM Object Instantiation Vulnerability
  74. Visual Studio 6.0 Multiple COM Object Instantiation Vulnerability
  75. Microsoft Internet Explorer UTF-8 Decoding Heap Overflow Vulnerability
  76. Microsoft Internet Explorer DXImageTransform ActiveX Memory Corruption Vulnerability
  77. Multiple Browsers File Upload Data Disclosure
  78. Internet Explorer Null Pointer Dereference DoS
  79. Microsoft Internet Explorer Crash
  80. Interner Explorer Interpreter Stack Overflow
  81. Internet Explorer CSS Attribute DoS
  82. Microsoft Internet Explorer DoS
  83. Internet Explorer Script Action Handlers (mshtml.dll) Buffer Overflow
  84. WMF Image Parsing Memory Corruption (MS06-004)
  85. Internet Explorer 7.0 Beta 2 urlmon.dll Buffer Overflow
  86. Internet Explorer XML and IMG Elements DoS
  87. Microsoft Internet Explorer Multiple DoS (datasrc, mshtml.dll)
  88. Microsoft Internet Explorer Keyboard Shortcut Processing
  89. Internet Explorer Multiple Download Dialog Vulnerabilities (MS05-054)
  90. Microsoft Office InfoPath 2003 Form Handling DoS
  91. Microsoft Internet Explorer JavaScript Window() Code Execution
  92. Microsoft Internet Explorer Msdds.dll Code Execution
  93. Cumulative Security Update for Internet Explorer (MS05-038, Exploit)
  94. Internet Explorer Code Execution Through MIME Manipulation
  95. Microsoft IE Devenum.dll COM Instantiation Code Execution
  96. Microsoft Internet Explorer COM Objects Instantiation (Exploit, MS05-038)
  97. Cumulative Security Update for Internet Explorer (MS05-038)
  98. Microsoft Internet Explorer Javaprxy.dll COM Object Execution (Exploit)
  99. Multiple Browsers Dialog Origin Vulnerability (Test)
  100. Internet Explorer and Opera JavaScript Ghost Vulnerability
  101. Microsoft IE Recursive Scripting, Embedded Files, window() and Restricted Sites DoS
  102. Internet Explorer wininet.dll URL Parsing Memory Corruption (Technical Details, MS05-020)
  103. Multiple Vulnerabilities in Internet Explorer (Heap Corruption, Race Condition)
  104. Microsoft Internet Explorer createControlRange() Memory Corruption
  105. Microsoft Internet Explorer Multiple Vulnerabilities (Content-Disposition, codebase)
  106. Internet Explorer Handling of %20 Allows Spoofing
  107. Internet Explorer FTP Client Directory Traversal
  108. Browsers\ FTP Client can be Used to Send Mail
  109. Microsoft Internet Explorer XP SP2 Fully Automated Remote Compromise
  110. FTP Client Command Injection
  111. Windows XP SP2 Popup Blocker Bypassing
  112. Sun Java Plugin Arbitrary Package Access Vulnerability
  113. Circumvent Windows XP SP2 Security Features using execCommand \SaveAs\ Function
  114. How to Break Windows XP SP2 (Drag and Drop media files)
  115. Poisoning Cached HTTPS Documents in Internet Explorer
  116. Internet Explorer Remote Null Pointer Crash (mshtml.dll)
  117. Internet Explorer Method Cache Location Variant Trust Leads to Script Execution
  118. Sun JVM Insecure Temporary File Creation Allows Remote Code Execution
  119. Internet Explorer Memory Corruption Bug
  120. Removing about:blank Homepage Hijacker
  121. Internet Explorer Crash (Malformed META Tag)
  122. Internet Explorer Remote Dos (Memory Access Violation)
  123. Internet Explorer Print without Prompting
  124. Microsoft Internet Explorer Cross Frame Scripting Restriction Bypass
  125. AOL Instant Messenger/Microsoft Internet Explorer Remote Code Execution
  126. Internet Explorer/Outlook double null character DoS
  127. Internet Explorer JavaScript URL Injection in History List
  128. Microsoft Internet Explorer %USERPROFILE% File Execution Vulnerability
  129. Internet Explorer Local Zone Restriction Bypass (Exploit)
  130. Cumulative Patch for Internet Explorer (MS03-040)
  131. Internet Explorer Object Data Remote Execution Vulnerability
  132. The Return of the Content-Disposition Vulnerability in IE
  133. Internet Explorer Object Type Buffer Overflow in Double-Byte Character Set Environment
  134. Microsoft Internet Explorer about:blank Cross Site Scripting
  135. Unchecked Buffer in DirectX Could Enable System Compromise
  136. Script Injection to Custom HTTP Errors in Local Zone
  137. Cross-Site Scripting in Unparsable XML Files
  138. Internet Explorer Program Execution (Flooding)
  139. MHT Buffer Overflow in Internet Explorer
  140. Cumulative Patch for Internet Explorer (MS03-004)
  141. PNG (Portable Network Graphics) Deflate Heap Corruption Vulnerability (Windows)
  142. Poisonous Style for Dialog Window Bypasses Zone Security
  143. Buffer Overrun in Microsoft Data Access Components Could Lead to Code Execution
  144. Bypassing Cookie Restrictions in IE 5 and IE 6
  145. Microsoft Internet Explorer % Encoding Security Issue (CSS)
  146. Certificate Validation Flaw Could Enable Identity Spoofing
  147. Internet Explorer SSL Vulnerability
  148. Macromedia Shockwave Flash Malformed Header Overflow
  149. Combining IE and .XLA leads to Security Vulnerabilities
  150. IE Allows Universal Cross Domain Scripting
  151. IE CSS Parsing Error (cssText)
  152. Unchecked Buffer in Gopher Protocol Handler Can Run Code of Attacker\s Choice
  153. IE \Folder View for FTP sites\ Script Execution Vulnerability
  154. 15 May 2002 Cumulative Patch for Internet Explorer
  155. IE and OE Cannot Handle Malformed XBM Files
  156. MSIE URL Buffer Overflow using Greek Characters
  157. Unchecked Buffer in Internet Explorer and Office for Mac Can Cause Code to Execute
  158. 28 March 2002 Cumulative Patch for Internet Explorer
  159. Automatically Opening Internet Explorer and Execution of Attachments (WebBrowser)
  160. Internet Explorer and Access Allows Macros to be Executed Automatically
  161. Web Browsers Vulnerable to the Extended HTML Form Attack
  162. 13 December 2001 Cumulative Patch for IE
  163. November 2001 Cumulative Patch for IE
  164. Cookie Data in IE Can Be Exposed or Altered Through Script Injection
  165. Downloaded Applications Can Execute Without Warning on Mac IE 5.1 for OS X
  166. Dotless IP Addresses Can Cause IE to Move into Intranet Zone
  167. Flaws in Web Server Certificate Validation Could Enable Spoofing
  168. Automatic Execution of Embedded MIME Types Vulnerability
  169. Incorrect MIME Headers Can Cause IE to Execute E-mail Attachments