Microsoft Internet Explorer 6 and 7 allows remote attackers to execute arbitrary code via uninitialized or deleted objects used in repeated calls to the (1) cloneNode or (2) nodeValue JavaScript function, a different issue than CVE-2007-3902 and CVE-2007-5344, a variant of Uninitialized Memory Corruption Vulnerability.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ie | Microsoft | 6.0-sp1 (including) | 6.0-sp1 (including) |
| Ie | Microsoft | 6.0-sp2 (including) | 6.0-sp2 (including) |
| Internet_explorer | Microsoft | 6 (including) | 6 (including) |
| Internet_explorer | Microsoft | 6-sp1 (including) | 6-sp1 (including) |
| Internet_explorer | Microsoft | 6.0 (including) | 6.0 (including) |
| Internet_explorer | Microsoft | 6.0.2600 (including) | 6.0.2600 (including) |
| Internet_explorer | Microsoft | 6.0.2800 (including) | 6.0.2800 (including) |
| Internet_explorer | Microsoft | 6.0.2800.1106 (including) | 6.0.2800.1106 (including) |
| Internet_explorer | Microsoft | 6.0.2900 (including) | 6.0.2900 (including) |
| Internet_explorer | Microsoft | 6.0.2900.2180 (including) | 6.0.2900.2180 (including) |
| Internet_explorer | Microsoft | 7 (including) | 7 (including) |
| Internet_explorer | Microsoft | 7.0 (including) | 7.0 (including) |
| Internet_explorer | Microsoft | 7.0-beta (including) | 7.0-beta (including) |
| Internet_explorer | Microsoft | 7.0-beta1 (including) | 7.0-beta1 (including) |
| Internet_explorer | Microsoft | 7.0-beta2 (including) | 7.0-beta2 (including) |
| Internet_explorer | Microsoft | 7.0-beta3 (including) | 7.0-beta3 (including) |
| Internet_explorer | Microsoft | 7.0.5730.11 (including) | 7.0.5730.11 (including) |