Vulnerabilities > CVE-2007-0612 - Unspecified vulnerability in Microsoft IE and Internet Explorer

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

microsoft

exploit available

NVD

Published: 2007-01-31

Updated: 2024-11-21

Summary

Multiple ActiveX controls in Microsoft Windows 2000, XP, 2003, and Vista allows remote attackers to cause a denial of service (Internet Explorer crash) by accessing the bgColor, fgColor, linkColor, alinkColor, vlinkColor, or defaultCharset properties in the (1) giffile, (2) htmlfile, (3) jpegfile, (4) mhtmlfile, (5) ODCfile, (6) pjpegfile, (7) pngfile, (8) xbmfile, (9) xmlfile, (10) xslfile, or (11) wdfile objects in (a) mshtml.dll; or the (12) TriEditDocument.TriEditDocument or (13) TriEditDocument.TriEditDocument.1 objects in (b) triedit.dll, which cause a NULL pointer dereference.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft IE 6.0 Microsoft IE 5.0_Ta3 Microsoft IE 7.0 Microsoft Internet Explorer 5.0.1 Microsoft Internet Explorer 5.5 Microsoft Internet Explorer 6.0 Microsoft Internet Explorer 7.0	10

Exploit-Db

description	Microsoft Internet Explorer 5.0.1 Multiple ActiveX Controls Denial of Service Vulnerabilities. CVE-2007-0612. Dos exploit for windows platform
id	EDB-ID:29536
last seen	2016-02-03
modified	2007-01-29
published	2007-01-29
reporter	Alexander Sotirov
source	https://www.exploit-db.com/download/29536/
title	Microsoft Internet Explorer 5.0.1 - Multiple ActiveX Controls Denial of Service Vulnerabilities

Summary

Vulnerable Configurations

Exploit-Db

References