CVE-2007-0219

Published: Feb 13, 2007Modified: Apr 23, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Microsoft Internet Explorer 5.01, 6, and 7 uses certain COM objects from (1) Msb1fren.dll, (2) Htmlmm.ocx, and (3) Blnmgrps.dll as ActiveX controls, which allows remote attackers to execute arbitrary code via unspecified vectors, a different issue than CVE-2006-4697.

Affected (4)

Products: Microsoft: Internet Explorer, Ie

2 products

Internet Explorer

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Microsoft Internet Explorer	Version 5.01 sp4

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Microsoft Ie	Version 6.0 sp1

Running on/with	Platform Versions
Microsoft Windows 2000	All versions

Configuration C

1 vulnerable · 3 platform

Vulnerable Software	Affected Versions
Microsoft Internet Explorer	Version 6.0

Running on/with	Platform Versions
Microsoft Windows 2003 Server	Version gold
Microsoft Windows 2003 Server	Version gold
Microsoft Windows Xp	All versions

Configuration D

1 vulnerable · 5 platform

Vulnerable Software	Affected Versions
Microsoft Internet Explorer	Version 7.0

Running on/with	Platform Versions
Microsoft Windows 2003 Server	Version gold
Microsoft Windows 2003 Server	Version sp1
Microsoft Windows 2003 Server	Version sp1
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions

References (24)

http://secunia.com/advisories/24156

Source: secure@microsoft.com

http://www.kb.cert.org/vuls/id/771788

Source: secure@microsoft.com

US Government Resource

http://www.osvdb.org/31893

Source: secure@microsoft.com

http://www.osvdb.org/31894

Source: secure@microsoft.com

http://www.osvdb.org/31895

Source: secure@microsoft.com

http://www.securityfocus.com/bid/22504

Source: secure@microsoft.com

http://www.securitytracker.com/id?1017643

Source: secure@microsoft.com

http://www.us-cert.gov/cas/techalerts/TA07-044A.html

Source: secure@microsoft.com

US Government Resource

http://www.vupen.com/english/advisories/2007/0584

Source: secure@microsoft.com

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-016

Source: secure@microsoft.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/32427

Source: secure@microsoft.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A257

Source: secure@microsoft.com

http://secunia.com/advisories/24156

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/771788

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.osvdb.org/31893

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/31894

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/31895

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/22504

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1017643

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.us-cert.gov/cas/techalerts/TA07-044A.html

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.vupen.com/english/advisories/2007/0584

Source: af854a3a-2127-422b-91ae-364da2661108

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-016

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/32427

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A257

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.