Shodan
Vulnerabilities
Vulnerable Software
Microsoft:  >> Internet Explorer  >> 4.0.1  Security Vulnerabilities
CVE-2000-0028
Internet Explorer 5.0 and 5.01 allows remote attackers to bypass the cross frame security policy and read files via the external.NavigateAndFind function.
CVSS Score
2.6
EPSS Score
0.218
Published
1999-12-23
CVE-1999-0981
Internet Explorer 5.01 and earlier allows a remote attacker to create a reference to a client window and use a server-side redirect to access local files via that window, aka "Server-side Page Reference Redirect."
CVSS Score
5.1
EPSS Score
0.036
Published
1999-12-08
CVE-1999-0793
Internet Explorer allows remote attackers to read files by redirecting data to a Javascript applet.
CVSS Score
2.6
EPSS Score
0.228
Published
1999-11-17
CVE-1999-0827
By default, Internet Explorer 5.0 and other versions enables the "Navigate sub-frames across different domains" option, which allows frame spoofing.
CVSS Score
2.6
EPSS Score
0.009
Published
1999-11-01
CVE-1999-1577
Buffer overflow in HHOpen ActiveX control (hhopen.ocx) 1.0.0.1 for Internet Explorer 4.01 and 5 allows remote attackers to execute arbitrary commands via long arguments to the OpenHelp method.
CVSS Score
5.1
EPSS Score
0.307
Published
1999-10-31
CVE-1999-1578
Buffer overflow in Registration Wizard ActiveX control (regwizc.dll, InvokeRegWizard) 3.0.0.0 for Internet Explorer 4.01 and 5 allows remote attackers to execute arbitrary commands.
CVSS Score
5.1
EPSS Score
0.249
Published
1999-09-24
CVE-1999-0702
Internet Explorer 5.0 and 5.01 allows remote attackers to modify or execute files via the Import/Export Favorites feature, aka the "ImportExportFavorites" vulnerability.
CVSS Score
10.0
EPSS Score
0.365
Published
1999-09-10
CVE-1999-1575
The Kodak/Wang (1) Image Edit (imgedit.ocx), (2) Image Annotation (imgedit.ocx), (3) Image Scan (imgscan.ocx), (4) Thumbnail Image (imgthumb.ocx), (5) Image Admin (imgadmin.ocx), (6) HHOpen (hhopen.ocx), (7) Registration Wizard (regwizc.dll), and (8) IE Active Setup (setupctl.dll) ActiveX controls for Internet Explorer (IE) 4.01 and 5.0 are marked as "Safe for Scripting," which allows remote attackers to create and modify files and execute arbitrary commands.
CVSS Score
5.1
EPSS Score
0.226
Published
1999-09-10
CVE-1999-0488
Internet Explorer 4.0 and 5.0 allows a remote attacker to execute security scripts in a different security context using malicious URLs, a variant of the "cross frame" vulnerability.
CVSS Score
7.5
EPSS Score
0.034
Published
1999-04-21
CVE-1999-0869
Internet Explorer 3.x to 4.01 allows a remote attacker to insert malicious content into a frame of another web site, aka frame spoofing.
CVSS Score
2.6
EPSS Score
0.142
Published
1998-12-01


Products
Pricing
Contact Us

Shodan ® - All rights reserved