New Search

HTML Objects Memory Corruption Vulnerabilities

oval:org.mitre.oval:def:2048

Use-after-free vulnerability in Microsoft Internet Explorer 7 on Windows XP SP2 Windows Server 2003 SP1 or SP2 or Windows Vista allows remote attackers to execute arbitrary code via crafted HTML objects resulting in accessing deallocated memory of CMarkup objects aka the second of two "HTML Objects Memory Corruption Vulnerabilities" and a different issue than CVE-2007-0946.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows XP
  • Microsoft Windows Vista
  • Microsoft Windows 2000
  • Microsoft Windows Server 2003
Class:
vulnerability
Reference(s):
  • CVE-2007-0947
Product(s):
  • Microsoft Internet Explorer