CVE Vulnerabilities

CVE-2007-0612

Published: Jan 31, 2007 | Modified: Jul 23, 2021
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.8 HIGH
AV:N/AC:L/Au:N/C:N/I:N/A:C
RedHat/V2
RedHat/V3
Ubuntu

Multiple ActiveX controls in Microsoft Windows 2000, XP, 2003, and Vista allows remote attackers to cause a denial of service (Internet Explorer crash) by accessing the bgColor, fgColor, linkColor, alinkColor, vlinkColor, or defaultCharset properties in the (1) giffile, (2) htmlfile, (3) jpegfile, (4) mhtmlfile, (5) ODCfile, (6) pjpegfile, (7) pngfile, (8) xbmfile, (9) xmlfile, (10) xslfile, or (11) wdfile objects in (a) mshtml.dll; or the (12) TriEditDocument.TriEditDocument or (13) TriEditDocument.TriEditDocument.1 objects in (b) triedit.dll, which cause a NULL pointer dereference.

Affected Software

Name Vendor Start Version End Version
Ie Microsoft 5.0_ta3 (including) 5.0_ta3 (including)
Ie Microsoft 6.0-sp1 (including) 6.0-sp1 (including)
Ie Microsoft 7.0 (including) 7.0 (including)
Internet_explorer Microsoft 5.0.1 (including) 5.0.1 (including)
Internet_explorer Microsoft 5.0.1-sp1 (including) 5.0.1-sp1 (including)
Internet_explorer Microsoft 5.0.1-sp4 (including) 5.0.1-sp4 (including)
Internet_explorer Microsoft 5.5 (including) 5.5 (including)
Internet_explorer Microsoft 6.0 (including) 6.0 (including)
Internet_explorer Microsoft 7.0-beta1 (including) 7.0-beta1 (including)
Internet_explorer Microsoft 7.0-beta2 (including) 7.0-beta2 (including)

References