CVE-2007-0946

Sažetak

Unspecified vulnerability in Microsoft Internet Explorer 7 on Windows XP SP2, Windows Server 2003 SP1 or SP2, or Windows Vista allows remote attackers to execute arbitrary code via crafted HTML objects, which results in memory corruption, aka the first of two "HTML Objects Memory Corruption Vulnerabilities" and a different issue than CVE-2007-0947.

Reference

http://www.securityfocus.com/bid/23770
http://www.securitytracker.com/id?1018019
http://secunia.com/advisories/23769
http://www.us-cert.gov/cas/techalerts/TA07-128A.html
http://www.osvdb.org/34402
http://www.vupen.com/english/advisories/2007/1712
https://exchange.xforce.ibmcloud.com/vulnerabilities/33255
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1441
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-027
http://www.securityfocus.com/archive/1/468871/100/200/threaded

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

23-07-2021 - 15:05

Objavljeno

08-05-2007 - 23:19