|
Vulnerability Report: Microsoft Internet Explorer 6.x
|
This vulnerability report for Microsoft Internet Explorer 6.x contains a complete overview of all Secunia advisories affecting it. You can use this vulnerability report to ensure that you are aware of all vulnerabilities, both patched and unpatched, affecting this product allowing you to take the necessary precautions.
If you have information about a new or an existing vulnerability in Microsoft Internet Explorer 6.x then you are more than welcome to contact us.
|
|
|
|
|
Vendor, Links, and Unpatched Vulnerabilities
| Vendor |
Microsoft
|
|
|
Product Link
|
View Here (Link to external site)
|
|
|
Affected By
|
143 Secunia advisories
176 Vulnerabilities
|
|
|
Monitor Product
|
Receive alerts for this product
|
|
|
Unpatched
|
16% (23 of 143 Secunia advisories)
|
|
Most Critical Unpatched
The most severe unpatched Secunia advisory affecting Microsoft Internet Explorer 6.x, with all vendor patches applied, is rated Moderately critical  .
|
|
|
|
|
|
24 Secunia Advisories in 2003
|
Secunia has issued a total of 24 Secunia advisories in 2003 for Microsoft Internet Explorer 6.x. Currently, 4% (1 out of 24) are marked as unpatched with the most severe being rated Not critical 
More information about the specific Secunia advisories affecting Microsoft Internet Explorer 6.x can be found below. Each Secunia advisory is enclosed by a box highlighted with a color representing its current patch status. You can read the complete Secunia advisories for thorough descriptions of the issues covered and for solution suggestions by clicking either the Secunia advisory title or the "Read More" links available for each Secunia advisory.
|
|
|
|
|
|
Release Date:
2003-12-09 |
Secunia Advisory ID:
SA10395 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Spoofing
|
Where:
From remote |
|
Short Description:
A vulnerability has been identified in Internet Explorer, which can be exploited by malicious people to display a fake URL in the address and status bars. [Read More]
|
|
|
|
|
|
Release Date:
2003-11-25 |
Secunia Advisory ID:
SA10289 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Security Bypass
Cross Site Scripting
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Multiple vulnerabilities have been identified in Internet Explorer, which in combination can be exploited to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2003-11-11 |
Secunia Advisory ID:
SA10192 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Microsoft has issued a cumulative patch, which fixes multiple vulnerabilities in Internet Explorer. These vulnerabilities can potentially be exploited to bypass Internet Explorer security restrictions and execute arbitrary code with the privileges of the current user. [Read More]
|
|
|
|
|
|
Release Date:
2003-11-07 |
Secunia Advisory ID:
SA10157 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
Multiple vulnerabilities have been identified in Internet Explorer allowing malicious HTML documents such as web sites to access resources in the Local Zone. [Read More]
|
|
|
|
|
|
Release Date:
2003-11-07 |
Secunia Advisory ID:
SA10155 |
Solution Status:
Unpatched |
|
Criticality:
|
Impact:
Exposure of system information
|
Where:
From remote |
|
Short Description:
A vulnerability has been identified in Internet Explorer allowing malicious HTML documents such as web sites to see which components are installed. [Read More]
|
|
|
|
|
|
Release Date:
2003-10-10 |
Secunia Advisory ID:
SA9989 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
|
Where:
From remote |
|
Short Description:
A vulnerability has been reported in Internet Explorer for Windows Server 2003, which can be exploited by malicious people to open arbitrary, known files on a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2003-10-04 |
Secunia Advisory ID:
SA9935 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Microsoft has released a new cumulative patch for Internet Explorer. This fixes the Object Data vulnerability, which was inadequatedly addressed in MS03-32. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-11 |
Secunia Advisory ID:
SA9711 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Multiple vulnerabilities have been identified in Microsoft Internet Explorer. Some could expose sensitive information others may lead to execution of arbitrary code. [Read More]
|
|
|
|
|
|
Release Date:
2003-09-03 |
Secunia Advisory ID:
SA9668 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
A vulnerability has been identified in Microsoft Access Snapshot Viewer ActiveX control potentially allowing malicious HTML documents and Microsoft Access Snapshot files to cause a buffer overflow. [Read More]
|
|
|
|
|
|
Release Date:
2003-08-20 |
Secunia Advisory ID:
SA9580 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Microsoft has issued a cumulative patch for Internet Explorer, which fixes multiple vulnerabilities. The worst vulnerability can lead to execution of arbitrary code on the client system via HTML emails or web sites. [Read More]
|
|
|
|
|
|
Release Date:
2003-08-14 |
Secunia Advisory ID:
SA9534 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
A vulnerability has been identified in a Microsoft ActiveX plugin called MCIWNDX.OCX, which possibly allows malicious HTML documents to execute arbitrary code on a vulnerable system. [Read More]
|
|
|
|
|
|
Release Date:
2003-07-16 |
Secunia Advisory ID:
SA9268 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Exposure of system information
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
A vulnerability has been reported in Internet Explorer (IE), which can be exploited by malicious people to conduct Cross-Site Scripting attacks or execute script code on a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-17 |
Secunia Advisory ID:
SA9056 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
Cross Site Scripting
System access
|
Where:
From remote |
|
Short Description:
A vulnerability has been identified in Internet Explorer (IE), which can be exploited by malicious people to execute arbitrary script code on a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-17 |
Secunia Advisory ID:
SA9055 |
Solution Status:
Vendor Patch |
|
Criticality:
 |
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
A vulnerability has been identified in Internet Explorer (IE), which can be exploited by malicious people to conduct Cross-Site Scripting attacks against a user. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-06 |
Secunia Advisory ID:
SA8955 |
Solution Status:
Partial Fix |
|
Criticality:
|
Impact:
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
A vulnerability has been identified in Internet Explorer, which exposes sensitive information to "msn.com" and "alexa.com". [Read More]
|
|
|
|
|
|
Release Date:
2003-06-05 |
Secunia Advisory ID:
SA8949 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
|
Where:
From remote |
|
Short Description:
A vulnerability has been identified in Microsoft Internet Explorer allowing malicious people to conduct Cross Site Scripting against any site running a FTP service on a wildcard domain. [Read More]
|
|
|
|
|
|
Release Date:
2003-06-04 |
Secunia Advisory ID:
SA8943 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Microsoft has reported a vulnerability in Internet Explorer, which can be exploited by malicious people to compromise a user's system. [Read More]
|
|
|
|
|
|
Release Date:
2003-05-20 |
Secunia Advisory ID:
SA8807 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Security Bypass
System access
|
Where:
From remote |
|
Short Description:
A vulnerability has been identified in Internet Explorer, which can be exploited by a malicious person to bypass certain security restrictions in a user's browser making it possible to compromise the system. [Read More]
|
|
|
|
|
|
Release Date:
2003-04-23 |
Secunia Advisory ID:
SA8649 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Exposure of system information
Exposure of sensitive information
System access
|
Where:
From remote |
|
Short Description:
Microsoft has issued a cumulative patch for Internet Explorer, which fixes the following four vulnerabilities: [Read More]
|
|
|
|
|
|
Release Date:
2003-04-23 |
Secunia Advisory ID:
SA8642 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
A vulnerability identified in a library included in Windows XP and Internet Explorer version 4.0 and newer can be exploited to cause a DoS (Denial of Service) on certain applications. [Read More]
|
|
|
|
|
|
Release Date:
2003-03-13 |
Secunia Advisory ID:
SA8283 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
DoS
|
Where:
From remote |
|
Short Description:
A vulnerability has been identified in Internet Explorer's 'web archive' format (files with the extension ".mht"). [Read More]
|
|
|
|
|
|
Release Date:
2003-03-04 |
Secunia Advisory ID:
SA8208 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Macromedia has reported that they recently became aware of some potential vulnerabilities in Flash Player. [Read More]
|
|
|
|
|
|
Release Date:
2003-02-05 |
Secunia Advisory ID:
SA8004 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
System access
|
Where:
From remote |
|
Short Description:
Microsoft has issued patches, in another attempt to fix the well known cross domain vulnerabilities, allowing malicious web sites to access contents in other domains including local zone. [Read More]
|
|
|
|
|
|
Release Date:
2003-02-04 |
Secunia Advisory ID:
SA7992 |
Solution Status:
Vendor Patch |
|
Criticality:
|
Impact:
Cross Site Scripting
Exposure of system information
Exposure of sensitive information
|
Where:
From remote |
|
Short Description:
A vulnerability in Internet Explorer (IE) caused by inadequate restrictions can be exploited by a malicious person to gain knowledgde of sensitive information on a user's system. [Read More]
|
|
|
