Microsoft » Windows Explorer : Security Vulnerabilities, CVEs,
Microsoft Windows Explorer on Windows 2000 SP4 FR and XP SP2 FR, and possibly other versions and platforms, allows remote attackers to cause a denial of service (memory corruption and crash) via an Office file with crafted document summary information, which causes an error in Ole32.dll.
Max CVSS
7.1
EPSS Score
88.31%
Published
2007-03-08
Updated
2017-10-11
Microsoft Windows Explorer on Windows XP and 2003 allows remote user-assisted attackers to cause a denial of service (crash) via a malformed WMF file, which triggers the crash when the user browses the folder.
Max CVSS
7.1
EPSS Score
75.75%
Published
2007-02-26
Updated
2018-10-16
Windows Explorer (explorer.exe) 6.0.2900.2180 in Microsoft Windows XP SP2 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted .avi file, which triggers the crash when the user right clicks on the file.
Max CVSS
4.3
EPSS Score
93.63%
Published
2007-01-30
Updated
2017-10-19
explorer.exe in Windows Explorer 6.00.2900.2180 in Microsoft Windows XP SP2 allows user-assisted remote attackers to cause a denial of service via a crafted WMV file.
Max CVSS
4.3
EPSS Score
17.42%
Published
2006-12-15
Updated
2018-10-17
Web View in Windows Explorer on Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 does not properly handle certain HTML characters in preview fields, which allows remote user-assisted attackers to execute arbitrary code.
Max CVSS
5.1
EPSS Score
83.86%
Published
2005-10-21
Updated
2018-10-12
Windows Explorer and Internet Explorer in Windows 2000 SP1 allows remote attackers to cause a denial of service (CPU consumption) via a malformed Windows Metafile (WMF) file.
Max CVSS
5.0
EPSS Score
1.18%
Published
2005-05-02
Updated
2021-07-23
Buffer overflow in the HTML library used by Internet Explorer, Outlook Express, and Windows Explorer via the res: local resource protocol.
Max CVSS
10.0
EPSS Score
0.35%
Published
1997-11-01
Updated
2022-08-17
7 vulnerabilities found