This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:microsoft:ie:8
Detail
VendorMicrosoftFirst view 2009-03-23
ProductIeLast view2012-06-12
Version8TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:microsoft:ie

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32012-06-12CVE-2012-1882NetworkMediumNone Requ...
9.32012-06-12CVE-2012-1881NetworkMediumNone Requ...
9.32012-06-12CVE-2012-1880NetworkMediumNone Requ...
9.32012-06-12CVE-2012-1879NetworkMediumNone Requ...
9.32012-06-12CVE-2012-1878NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
9.32012-06-12CVE-2012-1877NetworkMediumNone Requ...
9.32012-06-12CVE-2012-1876NetworkMediumNone Requ...
9.32012-06-12CVE-2012-1875NetworkMediumNone Requ...
9.32012-06-12CVE-2012-1874NetworkMediumNone Requ...
4.32012-06-12CVE-2012-1873NetworkMediumNone Requ...
4.32012-06-12CVE-2012-1872NetworkMediumNone Requ...
4.32012-06-12CVE-2012-1858NetworkMediumNone Requ...
9.32012-06-12CVE-2012-1523NetworkMediumNone Requ...
9.32012-04-10CVE-2012-0172NetworkMediumNone Requ...
9.32012-04-10CVE-2012-0171NetworkMediumNone Requ...
7.62012-04-10CVE-2012-0168NetworkHighNone Requ...
9.32012-02-14CVE-2012-0011NetworkMediumNone Requ...
4.32012-02-14CVE-2012-0010NetworkMediumNone Requ...
4.32011-12-13CVE-2011-3404NetworkMediumNone Requ...
4.32011-12-13CVE-2011-1992NetworkMediumNone Requ...
52011-12-07CVE-2011-4689NetworkLowNone Requ...
52011-12-07CVE-2010-5071NetworkLowNone Requ...
4.32011-12-07CVE-2002-2435NetworkMediumNone Requ...
9.32011-10-11CVE-2011-2001NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
36% (36)CWE-94Failure to Control Generation of Code ('Code Injection')
21% (21)CWE-200Information Exposure
11% (11)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
10% (10)CWE-399Resource Management Errors
9% (9)CWE-20Improper Input Validation
Hide | Show 3 More...
%idName
7% (7)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
4% (4)CWE-264Permissions, Privileges, and Access Controls
2% (2)CWE-362Race Condition

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-8Buffer Overflow in an API Call
CAPEC-9Buffer Overflow in Local Command-Line Utilities
CAPEC-10Buffer Overflow via Environment Variables
CAPEC-14Client-side Injection-induced Buffer Overflow
CAPEC-24Filter Failure through Buffer Overflow
Hide | Show 6 More...
idName
CAPEC-42MIME Conversion
CAPEC-44Overflow Binary Resource File
CAPEC-45Buffer Overflow via Symbolic Links
CAPEC-46Overflow Variables and Tags
CAPEC-47Buffer Overflow via Parameter Expansion
CAPEC-100Overflow Buffers

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:12820Drag and Drop Information Disclosure Vulnerability
oval:org.mitre.oval:def:12593VML Memory Corruption Vulnerability
oval:org.mitre.oval:def:15539Col Element Remote Code Execution Vulnerability (CVE-2012-1876)
oval:org.mitre.oval:def:12787Window Open Race Condition Vulnerability
oval:org.mitre.oval:def:15663Same ID Property Remote Code Execution Vulnerability (CVE-2012-1875)
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:12657Shift JIS Character Encoding Vulnerability
oval:org.mitre.oval:def:12355Microsoft Internet Explorer PDF Printing Information Disclosure
oval:org.mitre.oval:def:11447Cross-Domain Information Disclosure Vulnerability
oval:org.mitre.oval:def:12227Time Element Memory Corruption Vulnerability
oval:org.mitre.oval:def:7124Uninitialized Memory Corruption Vulnerability (CVE-2010-1261)
oval:org.mitre.oval:def:6832Uninitialized Memory Corruption Vulnerability (CVE-2010-3331)
oval:org.mitre.oval:def:6519Uninitialized Memory Corruption Vulnerability (CVE-2009-3673)
oval:org.mitre.oval:def:8186Uninitialized Memory Corruption Vulnerability (CVE-2010-0244)
oval:org.mitre.oval:def:14975insertRow Remote Code Execution Vulnerability (CVE-2012-1880)
oval:org.mitre.oval:def:8553HTML Element Cross-Domain Vulnerability
oval:org.mitre.oval:def:15629EUC-JP Character Encoding Vulnerability (CVE-2012-1872)
oval:org.mitre.oval:def:6570Uninitialized Memory Corruption Vulnerability (CVE-2009-3674)
oval:org.mitre.oval:def:6294HTML Objects Memory Corruption Vulnerability
oval:org.mitre.oval:def:12279Uninitialized Memory Corruption Vulnerability
oval:org.mitre.oval:def:11574DEPRECATED: Microsoft Internet Explorer CSS Tags Remote Code Execution Vulner...
oval:org.mitre.oval:def:15378OnRowsInserted Event Remote Code Execution Vulnerability (CVE-2012-1881)
oval:org.mitre.oval:def:8267Uninitialized Memory Corruption Vulnerability (CVE-2010-0248)
oval:org.mitre.oval:def:12383Event Handlers Information Disclosure Vulnerability
oval:org.mitre.oval:def:12838OLEAuto32.dll Remote Code Execution Vulnerability
oval:org.mitre.oval:def:12708Link Properties Handling Memory Corruption Vulnerability

SAINT Exploits

DescriptionLink
Internet Explorer COL SPAN Heap OverflowMore info here
Internet Explorer Same ID Property vulnerabilityMore info here
Microsoft Internet Explorer Time Element Memory CorruptionMore info here
Internet Explorer CSS clip attribute memory corruptionMore info here
Internet Explorer DOM modification memory corruptionMore info here
Hide | Show 4 More...
DescriptionLink
Microsoft Internet Explorer layout-grid-char Style Property Use-After-Free Memory CorruptionMore info here
Internet Explorer HTML+TIME element OuterText memory corruptionMore info here
Internet Explorer Telnet URI Insecure LoadingMore info here
Microsoft Internet Explorer CSS Import Use-After-Free Code ExecutionMore info here

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
77675Microsoft IE Content-Disposition Header Parsing Cross-Domain Remote Informati...
77673Microsoft IE XSS Filter Event Parsing Cross-Domain Remote Information Disclosure
77606Microsoft IE JavaScript Implementation getComputedStyle Method Page Handling ...
77537Microsoft IE Cache Objects IFRAME Handling Browsing History Disclosure
76213Microsoft IE Virtual Function Table Corruption mshtml.dll Extra Size Index Ha...
Hide | Show 20 More...
idDescription
76212Microsoft IE Use-after-free swapNode() Method Body Element Handling Remote Co...
76211Microsoft IE Select Element Handling Uninitialised Object Access Remote Memor...
76208Microsoft IE Use-after-free Type-Safety Weakness Option Element Handling Remo...
76207Microsoft IE OLEAuto32.dll Uninitialised Object Access Remote Memory Corruption
76206Microsoft IE Use-after-free Scroll Event Handling Remote Code Execution
75250Microsoft IE Unspecified Remote Code Execution
75030Microsoft msxml.dll xsltGenerateIdFunction Heap Memory Address Information Di...
74500Microsoft IE STYLE Object Parsing Memory Corruption
74499Microsoft IE SetViewSlave() Function XSLT Object Markup Reloading Memory Corr...
74498Microsoft IE Shift JIS Character Sequence Parsing Cross-domain Remote Informa...
74497Microsoft IE Event Handler Cross-domain Remote Information Disclosure
74496Microsoft IE Protected Mode Bypass Arbitrary File Creation
74495Microsoft IE window.open() Function Race Condition Memory Corruption
74494Microsoft IE Crafted Link Telnet URI Handler Remote Program Execution
74297Bugzilla Patch Attachment Raw Unified Viewing Mode XSS
72954Microsoft IE Vector Markup Language (VML) Object Handling Memory Corruption
72953Microsoft IE MIME Sniffing Information Disclosure
72952Microsoft IE CDL Protocol 302 HTTP Redirect Memory Corruption
72951Microsoft IE selection.empty JavaScript Statement onclick Event Memory Corrup...
72950Microsoft IE layout-grid-char Style Property Handling Memory Corruption

ExploitDB Exploits

idDescription
35273Internet Explorer 8 - Fixed Col Span ID Full ASLR, DEP & EMET 5.1 Bypass ...
34815Internet Explorer 8 - Fixed Col Span ID Full ASLR, DEP & EMET 5.0 Bypass ...
33944Internet Explorer 8 - Fixed Col Span ID Full ASLR, DEP & EMET 4.1.X Bypass
24017Internet Explorer 8 - Fixed Col Span ID Full ASLR & DEP Bypass
20174Microsoft Internet Explorer Fixed Table Col Span Heap Overflow
Hide | Show 4 More...
idDescription
19777IE9, SharePoint, Lync toStaticHTML HTML Sanitizing Bypass
19141MS12-037 Internet Explorer Same ID Property Deleted Object Handling Memory Co...
15421Internet Explorer 6, 7, 8 Memory Corruption 0day Exploit
15262Microsoft Office HtmlDlgHelper Class Memory Corruption

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-07-11Name : Microsoft SharePoint Multiple Privilege Elevation Vulnerabilities (2695502)
File : nvt/secpod_ms12-050.nasl
2012-06-13Name : Microsoft Internet Explorer Multiple Vulnerabilities (2699988)
File : nvt/secpod_ms12-037.nasl
2012-06-13Name : Microsoft Lync Remote Code Execution Vulnerabilities (2707956)
File : nvt/secpod_ms12-039.nasl
2012-04-11Name : Microsoft Internet Explorer Multiple Vulnerabilities (2675157)
File : nvt/secpod_ms12-023.nasl
2012-04-02Name : Fedora Update for bugzilla FEDORA-2011-10399
File : nvt/gb_fedora_2011_10399_bugzilla_fc16.nasl
Hide | Show 20 More...
idDescription
2012-02-15Name : Microsoft Internet Explorer Multiple Vulnerabilities (2647516)
File : nvt/secpod_ms12-010.nasl
2012-02-12Name : Gentoo Security Advisory GLSA 201110-03 (bugzilla)
File : nvt/glsa_201110_03.nasl
2011-12-14Name : Microsoft Internet Explorer Multiple Vulnerabilities (2618444)
File : nvt/secpod_ms11-099.nasl
2011-12-09Name : Microsoft Internet Explorer Cache Objects History Information Disclosure Vuln...
File : nvt/gb_ms_ie_history_info_disc_vuln.nasl
2011-12-09Name : Microsoft Internet Explorer Multiple Information Disclosure Vulnerabilities
File : nvt/gb_ms_ie_mult_info_disc_vuln.nasl
2011-10-16Name : Debian Security Advisory DSA 2322-1 (bugzilla)
File : nvt/deb_2322_1.nasl
2011-10-12Name : Microsoft Internet Explorer Multiple Vulnerabilities (2586448)
File : nvt/secpod_ms11-081.nasl
2011-09-22Name : Microsoft SharePoint SafeHTML Information Disclosure Vulnerabilities (2412048)
File : nvt/secpod_ms10-072.nasl
2011-09-21Name : FreeBSD Ports: bugzilla
File : nvt/freebsd_bugzilla13.nasl
2011-09-14Name : Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities (2451858)
File : nvt/secpod_ms11-074.nasl
2011-08-24Name : Fedora Update for bugzilla FEDORA-2011-10413
File : nvt/gb_fedora_2011_10413_bugzilla_fc14.nasl
2011-08-24Name : Fedora Update for bugzilla FEDORA-2011-10426
File : nvt/gb_fedora_2011_10426_bugzilla_fc15.nasl
2011-08-22Name : Bugzilla Multiple Security Vulnerabilities
File : nvt/gb_bugzilla_49042.nasl
2011-08-11Name : Microsoft Internet Explorer Multiple Vulnerabilities (2559049)
File : nvt/secpod_ms11-057.nasl
2011-06-15Name : Microsoft Internet Explorer Multiple Vulnerabilities (2530548)
File : nvt/secpod_ms11-050.nasl
2011-06-15Name : Internet Explorer Vector Markup Language Remote Code Execution Vulnerability ...
File : nvt/secpod_ms11-052.nasl
2011-06-13Name : Microsoft Internet Explorer Cookie Hijacking Vulnerability
File : nvt/gb_ms_ie9_cookie_hijacking_vuln.nasl
2011-06-13Name : Microsoft Internet Explorer Cookie Hijacking Vulnerability
File : nvt/gb_ms_ie_cookie_hijacking_vuln.nasl
2011-04-22Name : Microsoft Internet Explorer 'msxml.dll' Information Disclosure Vulnerability
File : nvt/gb_ms_ie_msxml_info_disc_vuln.nasl
2011-04-13Name : Microsoft Internet Explorer Multiple Vulnerabilities (2497640)
File : nvt/secpod_ms11-018.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2011-B-0115Multiple Vulnerabilities in Microsoft Office SharePoint
Severity : Category II - VMSKEY : V0030239
2010-A-0079Multiple Vulnerabilities in Microsoft Office SharePoint
Severity : Category II - VMSKEY : V0024377
2010-A-0029Microsoft Windows Shell Handler Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0022683

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2017-10-03Microsoft Windows Shell Handler remote code execution attempt
RuleID : 44218 - Type : OS-WINDOWS - Revision : 1
2017-10-03Microsoft Windows Shell Handler remote code execution attempt
RuleID : 44217 - Type : OS-WINDOWS - Revision : 1
2017-10-03Microsoft Windows Shell Handler remote code execution attempt
RuleID : 44216 - Type : OS-WINDOWS - Revision : 1
2017-09-06Microsoft Internet Explorer CTableLayout memory corruption attempt
RuleID : 43831 - Type : BROWSER-IE - Revision : 2
2017-09-06Microsoft Internet Explorer CTableLayout memory corruption attempt
RuleID : 43830 - Type : BROWSER-IE - Revision : 2
Hide | Show 20 More...
DateDescription
2017-07-11Microsoft Internet Explorer CStyleSheetRule array memory corruption attempt
RuleID : 43134 - Type : BROWSER-IE - Revision : 1
2014-01-10Microsoft Internet Explorer htmlfile ActiveX object access attempt
RuleID : 4155 - Type : BROWSER-PLUGINS - Revision : 19
2017-02-03Microsoft Internet Explorer layout object use after free attempt
RuleID : 41107 - Type : BROWSER-IE - Revision : 1
2016-08-31Microsoft Internet Explorer 9 CTreeNode use after free attempt
RuleID : 39751 - Type : BROWSER-IE - Revision : 1
2016-08-31Microsoft Internet Explorer 9 CTreeNode use after free attempt
RuleID : 39750 - Type : BROWSER-IE - Revision : 1
2016-08-31Microsoft Internet Explorer 9 CTreeNode use after free attempt
RuleID : 39749 - Type : BROWSER-IE - Revision : 1
2016-08-31Microsoft Internet Explorer 9 CTreeNode use after free attempt
RuleID : 39748 - Type : BROWSER-IE - Revision : 1
2016-07-13Microsoft Internet Explorer use-after-free memory corruption attempt
RuleID : 39175 - Type : BROWSER-IE - Revision : 1
2016-07-13Microsoft Internet Explorer iframe uninitialized memory corruption attempt
RuleID : 39174 - Type : BROWSER-IE - Revision : 1
2016-04-05Microsoft Internet Explorer DOM manipulation memory corruption attempt
RuleID : 38016 - Type : BROWSER-IE - Revision : 1
2016-04-05Microsoft Internet Explorer DOM manipulation memory corruption attempt
RuleID : 38015 - Type : BROWSER-IE - Revision : 1
2016-04-05Microsoft Internet Explorer getBoundingClientRect incorrect rebalancing attempt
RuleID : 38014 - Type : BROWSER-IE - Revision : 1
2016-04-05Microsoft Internet Explorer getBoundingClientRect incorrect rebalancing attempt
RuleID : 38013 - Type : BROWSER-IE - Revision : 1
2016-04-05Microsoft Internet Explorer onscroll DOS attempt
RuleID : 37974 - Type : BROWSER-IE - Revision : 1
2016-04-05Microsoft Internet Explorer onscroll DOS attempt
RuleID : 37973 - Type : BROWSER-IE - Revision : 1
2016-04-05Microsoft Internet Explorer malformed table tag memory corruption attempt
RuleID : 37936 - Type : BROWSER-IE - Revision : 1
2016-04-05Microsoft Internet Explorer malformed table tag memory corruption attempt
RuleID : 37935 - Type : BROWSER-IE - Revision : 1
2016-03-25Microsoft Internet Explorer vector graphics reference counting use-after-free...
RuleID : 37848 - Type : BROWSER-IE - Revision : 1
2016-03-25Microsoft Internet Explorer vector graphics reference counting use-after-free...
RuleID : 37847 - Type : BROWSER-IE - Revision : 1
2016-03-22Microsoft Internet Explorer form selection reset attempt
RuleID : 37724 - Type : BROWSER-IE - Revision : 1

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-07-11Name : The remote host is affected by multiple privilege escalation and information ...
File : smb_nt_ms12-050.nasl - Type : ACT_GATHER_INFO
2012-06-13Name : The remote host is affected by code execution vulnerabilities.
File : smb_nt_ms12-037.nasl - Type : ACT_GATHER_INFO
2012-06-13Name : Arbitrary code can be executed on the remote host through Microsoft Lync.
File : smb_nt_ms12-039.nasl - Type : ACT_GATHER_INFO
2012-04-11Name : The remote host is affected by code execution vulnerabilities.
File : smb_nt_ms12-023.nasl - Type : ACT_GATHER_INFO
2012-02-14Name : The remote host is affected by code execution and information disclosure vuln...
File : smb_nt_ms12-010.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2011-12-13Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_nt_ms11-099.nasl - Type : ACT_GATHER_INFO
2011-10-11Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_nt_ms11-081.nasl - Type : ACT_GATHER_INFO
2011-10-11Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201110-03.nasl - Type : ACT_GATHER_INFO
2011-10-11Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2322.nasl - Type : ACT_GATHER_INFO
2011-09-14Name : The remote host is affected by multiple privilege escalation and information ...
File : smb_nt_ms11-074.nasl - Type : ACT_GATHER_INFO
2011-08-23Name : The remote Fedora host is missing a security update.
File : fedora_2011-10399.nasl - Type : ACT_GATHER_INFO
2011-08-20Name : The remote Fedora host is missing a security update.
File : fedora_2011-10413.nasl - Type : ACT_GATHER_INFO
2011-08-20Name : The remote Fedora host is missing a security update.
File : fedora_2011-10426.nasl - Type : ACT_GATHER_INFO
2011-08-15Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_dc8741b9c5d511e08a8e00151735203a.nasl - Type : ACT_GATHER_INFO
2011-08-09Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_nt_ms11-057.nasl - Type : ACT_GATHER_INFO
2011-06-15Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_nt_ms11-050.nasl - Type : ACT_GATHER_INFO
2011-06-15Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_nt_ms11-052.nasl - Type : ACT_GATHER_INFO
2011-04-13Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_nt_ms11-018.nasl - Type : ACT_GATHER_INFO
2011-02-08Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_nt_ms11-003.nasl - Type : ACT_GATHER_INFO
2011-01-20Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_kb2488013.nasl - Type : ACT_GATHER_INFO
2010-12-15Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_nt_ms10-090.nasl - Type : ACT_GATHER_INFO
2010-10-18Name : The remote host is affected by multiple cross-site scripting vulnerabilities.
File : safehtml_ms10_072.nasl - Type : ACT_GATHER_INFO
2010-10-13Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_nt_ms10-071.nasl - Type : ACT_GATHER_INFO
2010-10-13Name : The remote host is affected by multiple cross-site scripting vulnerabilities.
File : smb_nt_ms10-072.nasl - Type : ACT_GATHER_INFO
2010-08-11Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_nt_ms10-053.nasl - Type : ACT_GATHER_INFO