National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Contains Software Flaws (CVE)
  • CPE Product Version: cpe:/a:microsoft:internet_explorer:11:developer-preview
There are 228 matching records.
Displaying matches 141 through 160.
Vuln ID Summary CVSS Severity
CVE-2016-3322

Microsoft Internet Explorer 11 and Edge allow remote attackers to execute arbitrary code via a crafted web page, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3289.

Published: August 09, 2016; 05:59:29 PM -04:00
V3.0: 7.5 HIGH
    V2: 7.6 HIGH
CVE-2016-3293

Microsoft Internet Explorer 9 through 11 and Edge allow remote attackers to execute arbitrary code via a crafted web page, aka "Microsoft Browser Memory Corruption Vulnerability."

Published: August 09, 2016; 05:59:06 PM -04:00
V3.0: 7.5 HIGH
    V2: 7.6 HIGH
CVE-2016-3290

Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code via a crafted web page, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3288.

Published: August 09, 2016; 05:59:04 PM -04:00
V3.0: 7.5 HIGH
    V2: 7.6 HIGH
CVE-2016-3289

Microsoft Internet Explorer 11 and Edge allow remote attackers to execute arbitrary code via a crafted web page, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3322.

Published: August 09, 2016; 05:59:03 PM -04:00
V3.0: 7.5 HIGH
    V2: 7.6 HIGH
CVE-2016-3288

Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code via a crafted web page, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3290.

Published: August 09, 2016; 05:59:01 PM -04:00
V3.0: 7.5 HIGH
    V2: 7.6 HIGH
CVE-2016-3277

Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow remote attackers to obtain sensitive information via a crafted web site, aka "Microsoft Browser Information Disclosure Vulnerability."

Published: July 12, 2016; 09:59:31 PM -04:00
V3.0: 5.3 MEDIUM
    V2: 2.6 LOW
CVE-2016-3276

Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to conduct content-spoofing attacks via a crafted URL, aka "Microsoft Browser Spoofing Vulnerability."

Published: July 12, 2016; 09:59:30 PM -04:00
V3.0: 3.1 LOW
    V2: 2.6 LOW
CVE-2016-3274

Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to conduct content-spoofing attacks via a crafted URL, aka "Microsoft Browser Spoofing Vulnerability."

Published: July 12, 2016; 09:59:29 PM -04:00
V3.0: 3.1 LOW
    V2: 2.6 LOW
CVE-2016-3273

The XSS Filter in Microsoft Internet Explorer 9 through 11 and Microsoft Edge does not properly restrict JavaScript code, which allows remote attackers to obtain sensitive information via a crafted web site, aka "Microsoft Browser Information Disclosure Vulnerability."

Published: July 12, 2016; 09:59:28 PM -04:00
V3.0: 5.3 MEDIUM
    V2: 2.6 LOW
CVE-2016-3248

The Microsoft (1) JScript 9, (2) VBScript, and (3) Chakra JavaScript engines, as used in Microsoft Internet Explorer 9 through 11, Microsoft Edge, and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3259.

Published: July 12, 2016; 09:59:10 PM -04:00
V3.0: 8.8 HIGH
    V2: 9.3 HIGH
CVE-2016-3245

Microsoft Internet Explorer 9 through 11 allows remote attackers to trick users into making TCP connections to a restricted port via a crafted web site, aka "Internet Explorer Security Feature Bypass Vulnerability."

Published: July 12, 2016; 09:59:08 PM -04:00
V3.0: 6.5 MEDIUM
    V2: 4.3 MEDIUM
CVE-2016-3243

Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability."

Published: July 12, 2016; 09:59:06 PM -04:00
V3.0: 7.5 HIGH
    V2: 7.6 HIGH
CVE-2016-3242

Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3240 and CVE-2016-3241.

Published: July 12, 2016; 09:59:05 PM -04:00
V3.0: 7.5 HIGH
    V2: 7.6 HIGH
CVE-2016-3241

Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3240 and CVE-2016-3242.

Published: July 12, 2016; 09:59:04 PM -04:00
V3.0: 7.5 HIGH
    V2: 7.6 HIGH
CVE-2016-3240

Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3241 and CVE-2016-3242.

Published: July 12, 2016; 09:59:03 PM -04:00
V3.0: 7.5 HIGH
    V2: 7.6 HIGH
CVE-2016-3213

The Web Proxy Auto Discovery (WPAD) protocol implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold and 1511, and Internet Explorer 9 through 11 has an improper fallback mechanism, which allows remote attackers to gain privileges via NetBIOS name responses, aka "WPAD Elevation of Privilege Vulnerability."

Published: June 15, 2016; 09:59:17 PM -04:00
V3.0: 8.8 HIGH
    V2: 9.3 HIGH
CVE-2016-3207

The Microsoft (1) JScript 5.8 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer 9 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3205 and CVE-2016-3206.

Published: June 15, 2016; 09:59:13 PM -04:00
V3.0: 7.5 HIGH
    V2: 7.6 HIGH
CVE-2016-3206

The Microsoft (1) JScript 5.8 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer 9 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3205 and CVE-2016-3207.

Published: June 15, 2016; 09:59:12 PM -04:00
V3.0: 7.5 HIGH
    V2: 7.6 HIGH
CVE-2016-3205

The Microsoft (1) JScript 5.8 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer 9 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability," a different vulnerability than CVE-2016-3206 and CVE-2016-3207.

Published: June 15, 2016; 09:59:11 PM -04:00
V3.0: 7.5 HIGH
    V2: 7.6 HIGH
CVE-2016-3202

The Microsoft (1) Chakra JavaScript, (2) JScript, and (3) VBScript engines, as used in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corruption Vulnerability."

Published: June 15, 2016; 09:59:09 PM -04:00
V3.0: 7.5 HIGH
    V2: 7.6 HIGH