Microsoft: >> Internet Explorer Security Vulnerabilities
Internet Explorer 4 allows remote attackers (malicious web site operators) to read the contents of the clipboard via the Internet WebBrowser ActiveX object.
CVSS Score
2.6
EPSS Score
0.434
Published
1999-02-02
Internet Explorer 3.x to 4.01 allows a remote attacker to insert malicious content into a frame of another web site, aka frame spoofing.
CVSS Score
2.6
EPSS Score
0.13
Published
1998-12-01
Internet Explorer 4.01 allows remote attackers to read arbitrary files by pasting a file name into the file upload control, aka untrusted scripted paste.
CVSS Score
2.6
EPSS Score
0.091
Published
1998-10-01
Internet Explorer 4.0 and 4.01 allow a remote attacker to read files via IE's cross frame security, aka the "Cross Frame Navigate" vulnerability.
CVSS Score
2.6
EPSS Score
0.112
Published
1998-09-04
Internet Explorer 4.0 allows remote attackers to cause a denial of service (crash) via HTML code that contains a long CLASSID parameter in an OBJECT tag.
CVSS Score
5.0
EPSS Score
0.153
Published
1998-07-28
A configuration in a web browser such as Internet Explorer or Netscape Navigator allows execution of active content such as ActiveX, Java, Javascript, etc.
CVSS Score
7.5
EPSS Score
0.009
Published
1998-04-01
Buffer overflow in Internet Explorer 4.0(1).
CVSS Score
7.5
EPSS Score
0.032
Published
1998-01-01
Buffer overflow in the HTML library used by Internet Explorer, Outlook Express, and Windows Explorer via the res: local resource protocol.
CVSS Score
10.0
EPSS Score
0.179
Published
1997-11-01
Internet Explorer 3 records a history of all URL's that are visited by a user in DAT files located in the Temporary Internet Files and History folders, which are not cleared when the user selects the "Clear History" option, and are not visible when the user browses the folders because of tailored displays.
CVSS Score
2.1
EPSS Score
0.01
Published
1997-08-05
JavaScript in Internet Explorer 3.x and 4.x, and Netscape 2.x, 3.x and 4.x, allows remote attackers to monitor a user's web activities, aka the Bell Labs vulnerability.
CVSS Score
2.6
EPSS Score
0.029
Published
1997-07-08