http://www.securityfocus.com/bid/title/
Known flaws in IE 6 SP1.
2004-06-24: Microsoft Internet Explorer Non-FQDN URI Address Zone Bypass Vulnerability
2004-06-22: Multiple Browser URI Obfuscation Weakness
2004-06-21: Microsoft Internet Explorer Modal Dialog Zone Bypass Vulnerability
2004-06-16: Microsoft Internet Explorer HREF Save As Denial of Service Vulnerability
2004-06-15: Microsoft Internet Explorer Wildcard DNS Cross-Site Scripting Vulnerability
2004-06-10: Microsoft Internet Explorer ADODB.Stream Object File Installation Weakness
2004-06-10: Multiple Microsoft Internet Explorer Script Execution Vulnerabilities
2004-06-07: Microsoft Internet Explorer URL Local Resource Access Weakness
2004-06-04: Microsoft Internet Explorer ITS Protocol Zone Bypass Vulnerability
2004-05-25: Multiple Vendor URI Protocol Handler Arbitrary File Creation/Modification Vulnerability
2004-05-18: Microsoft Internet Explorer CSS Style Sheet Memory Corruption Vulnerability
2004-05-15: Microsoft Internet Explorer http-equiv Meta Tag Denial of Service Vulnerability
2004-05-14: Microsoft Internet Explorer Codebase Double Backslash Local Zone File Execution Weakness
2004-05-14: Microsoft Internet Explorer Double Backslash CHM File Execution Weakness
2004-05-14: Microsoft Internet Explorer Interface Spoofing Vulnerability
2004-05-11: Microsoft Internet Explorer Unconfirmed Memory Corruption Vulnerability
2004-05-10: Microsoft Internet Explorer Embedded Image URI Obfuscation Weakness
2004-04-30: Microsoft Internet Explorer Meta Data Foreign Domain Spoofing Vulnerability
2004-04-17: Microsoft Internet Explorer Object Element Data Denial Of Service Vulnerability
2004-04-12: Microsoft Internet Explorer Bitmap File Processing Denial of Service Vulnerability
2004-04-07: Microsoft Internet Explorer Remote IFRAME Denial Of Service Vulnerability
2004-04-06: Microsoft Internet Explorer Macromedia Flash Player Plug-in Remote Denial of Service Vulnerability
2004-04-06: Microsoft Internet Explorer MSWebDVD Object Denial of Service Vulnerability
2004-04-01: Microsoft Internet Explorer HTML Form Status Bar Misrepresentation Vulnerability
2004-03-29: Microsoft Internet Explorer Shell: IFrame Cross-Zone Scripting Vulnerability
2004-03-26: Multiple Vendor Internet Browser Cookie Path Argument Restriction Bypass Vulnerability
2004-03-08: Multiple Vendor HTTP Response Splitting Vulnerability
2004-03-04: Microsoft Internet Explorer Script URL Cross-Domain Access Violation Vulnerability
2004-03-04: Microsoft Internet Explorer window.open Search Pane Cross-Zone Scripting Vulnerability
2004-03-04: Microsoft Internet Explorer window.open Media Bar Cross-Zone Scripting Vulnerability
2004-02-27: Microsoft Internet Explorer Cross-Domain Event Leakage Vulnerability
2004-02-11: Microsoft Internet Explorer Unauthorized Clipboard Contents Disclosure Vulnerability
2004-02-10: Microsoft Internet Explorer Double-Null URI Denial Of Service Vulnerability
2004-02-09: Microsoft Internet Explorer LoadPicture File Enumeration Weakness
2004-02-03: Microsoft Internet Explorer NavigateAndFind() Cross-Zone Policy Vulnerability
2004-02-02: Multiple Browser URI Display Obfuscation Weakness
2004-02-02: Microsoft Internet Explorer BackToFramedJPU Cross-Domain Policy Vulnerability
2004-02-02: Microsoft Internet Explorer Window.MoveBy/Method Caching Mouse Click Event Hijacking Vulnerability
2004-01-27: Microsoft Internet Explorer CLSID File Extension Misrepresentation Vulnerability
2004-01-02: Microsoft Internet Explorer Malicious Shortcut Self-Executing HTML Vulnerability
2003-12-30: Microsoft Internet Explorer HTTP Referer Information Disclosure Vulnerability
2003-12-30: Microsoft Internet Explorer showHelp CHM File Execution Weakness
2003-12-23: Microsoft Internet Explorer File Download Warning Bypass Vulnerability
2003-11-26: Microsoft Internet Explorer Invalid ContentType Cache Directory Location Disclosure Weakness
2003-11-26: Microsoft Internet Explorer Double Slash Cache Zone Bypass Vulnerability
2003-11-17: Microsoft Internet Explorer ExecCommand Cross-Domain Access Violation Vulnerability
2003-11-17: Microsoft Internet Explorer Function Pointer Override Cross-Domain Access Violation Vulnerability
2003-11-11: Microsoft Internet Explorer XML Object Zone Restriction Bypass Vulnerability
2003-11-11: Microsoft Internet Explorer DHTML Drag and Drop Local File Saving Vulnerability
2003-11-08: Microsoft Internet Explorer Self Executing HTML Arbitrary Code Execution Vulnerability
2003-11-05: Microsoft Internet Explorer Local Resource Reference Vulnerability
2003-10-22: Microsoft Internet Explorer Scrollbar-Base-Color Partial Denial Of Service Vulnerability
2003-10-09: Microsoft Windows Media Player IE Zone Access Control Bypass Vulnerability
2003-10-09: Microsoft Windows Media Player Automatic File Download and Execution Vulnerability
2003-10-08: Microsoft Internet Explorer XML Page Object Type Validation Vulnerability
2003-10-08: Microsoft Internet Explorer %USERPROFILE% File Execution Weakness
2003-10-04: Microsoft Internet Explorer Absolute Position Block Denial Of Service Vulnerability
2003-10-04: Microsoft Internet Explorer Browser Popup Window Object Type Validation Vulnerability
2003-09-02: Microsoft mshtml.dll Library GIF Image Handling Denial of Service Vulnerability
2003-09-02: Microsoft Internet Explorer Object Type Validation Vulnerability
2003-08-26: Microsoft Internet Explorer BR549.DLL ActiveX Control Buffer Overflow Vulnerability
2003-08-26: Microsoft Internet Explorer Zone Restriction Bypass Script Execution Vulnerability
2003-08-26: Microsoft Internet Explorer OBJECT Tag Buffer Overflow Vulnerability
2003-08-04: Microsoft Internet Explorer Self Executing HTML File Vulnerability
2003-07-29: Microsoft Internet Explorer CLASSID Variant Denial Of Service Vulnerability
2003-07-14: Microsoft Internet Explorer window.createPopup Interface Spoofing Vulnerability
2003-07-13: Microsoft Internet Explorer AutoScan Method Browser Security Policy Violation Weakness
2003-07-07: Microsoft Internet Explorer Custom HTTP Error HTML Injection Vulnerability
2003-07-02: Microsoft Internet Explorer Remote URLMON.DLL Buffer Overflow Vulnerability
2003-06-04: Microsoft Internet Explorer Classic Mode FTP Client Cross Domain Scripting Vulnerability
2003-06-04: Internet Explorer file:// Request Zone Bypass Vulnerability
2003-05-30: Microsoft Internet Explorer False URL Information Vulnerability
2003-05-27: Microsoft Internet Explorer Malformed JavaScript Denial of Service Vulnerability
2003-05-05: Microsoft Internet Explorer DHTML AnchorClick Partial Denial Of Service Vulnerability
2003-05-02: Microsoft Internet Explorer Plugin.OCX EnableFullPage Input Validation Vulnerability
2003-05-02: Microsoft Internet Explorer Plugin.OCX Load() Method Buffer Overflow Vulnerability
2003-04-23: Microsoft Internet Explorer dragDrop Method Local File Reading Vulnerability
2003-04-23: Microsoft Internet Explorer Dialog Style Same Origin Policy Bypass Vulnerability
2003-04-21: Microsoft Internet Explorer Self-Referential Object Denial of Service Vulnerability
2003-03-12: Microsoft Internet Explorer .MHT File Buffer Overflow Vulnerability
2003-02-13: Microsoft Internet Explorer ShowHelp Arbitrary Command Execution Vulnerability
2003-02-13: Microsoft Internet Explorer Dialog Box Cross-Domain Violation Vulnerability
2002-12-26: Microsoft Internet Explorer Multimedia Page Cross-Site Scripting Vulnerability
2002-12-04: Multiple Microsoft Internet Explorer Cached Objects Zone Bypass Vulnerability
2002-11-22: Microsoft Data Access Components RDS Buffer Overflow Vulnerability
2002-11-21: Microsoft Internet Explorer HTML Same Origin Policy Violation Vulnerability
2002-11-19: Microsoft Internet Explorer IFRAME dialogArguments Cross-Zone Access Vulnerability
2002-11-06: Microsoft Internet Explorer Document Reference Zone Bypass Vulnerability
2002-09-23: Microsoft Internet Explorer SSL Certificate Expiration Vulnerability
2002-09-17: Microsoft Internet Explorer URI Handler Restriction Circumvention Vulnerability
2001-04-18: MS Windows Explorer and Internet Explorer CLSID File Execution Vulnerability
Opera 7.51. (fixed in 7.52- internat beta test)
2004-06-22: Multiple Browser URI Obfuscation Weakness
Firefox 9rc. (not sure if its been fixed in the new version)
2004-06-14: Mozilla Browser URI Obfuscation Weakness