|
|
CVE Reference: CVE-2007-5344 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-5344 |
|
|
Description: Microsoft Internet Explorer 5.01 through 7 allows remote attackers to execute arbitrary code via a crafted website using Javascript that creates, modifies, deletes, and accesses document objects using the tags property, which triggers heap corruption, related to uninitialized or deleted objects, a different issue than CVE-2007-3902 and CVE-2007-3903, and a variant of "Uninitialized Memory Corruption Vulnerability." |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/38715 ST 1019078 SAID Secunia Advisory: SA28036 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:4480 MS http://www.microsoft.com/technet/security/bulletin/ms07-069.mspx MISC http://www.zerodayinitiative.com/advisories/ZDI-07-075.html HP http://www.securityfocus.com/archive/1/archive/1/485268/100/0/threaded CERT http://www.us-cert.gov/cas/techalerts/TA07-345A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/484890/100/100/threaded BID 26817 |
|
| Return to the previous page. |
