9.3
CVE-2007-0942
- EPSS 59.11%
- Published 08.05.2007 23:19:00
- Last modified 09.04.2025 00:30:58
- Source secure@microsoft.com
- Teams watchlist Login
- Open Login
Microsoft Internet Explorer 5.01 SP4 on Windows 2000 SP4; 6 SP1 on Windows 2000 SP4; 6 and 7 on Windows XP SP2, or Windows Server 2003 SP1 or SP2; and possibly 7 on Windows Vista does not properly "instantiate certain COM objects as ActiveX controls," which allows remote attackers to execute arbitrary code via a crafted COM object from chtskdic.dll.
Data is provided by the National Vulnerability Database (NVD)
Microsoft ≫ Internet Explorer Version5.0.1 Updatesp4
Microsoft ≫ Internet Explorer Version6.0
Microsoft ≫ Windows 2003 Server Versionsp1
Microsoft ≫ Windows 2003 Server Versionsp1 Editionitanium
Microsoft ≫ Windows 2003 Server Versionsp1 Editionx64
Microsoft ≫ Windows 2003 Server Versionsp2
Microsoft ≫ Windows 2003 Server Versionsp2 Editionitanium
Microsoft ≫ Windows 2003 Server Versionsp2 Editionx64
Microsoft ≫ Windows Xp Updategold Editionprofessional_x64
Microsoft ≫ Windows Xp Updatesp2
Microsoft ≫ Windows Xp Updatesp2 Editionprofessional_x64
Microsoft ≫ Windows 2003 Server Versionsp1 Editionitanium
Microsoft ≫ Windows 2003 Server Versionsp1 Editionx64
Microsoft ≫ Windows 2003 Server Versionsp2
Microsoft ≫ Windows 2003 Server Versionsp2 Editionitanium
Microsoft ≫ Windows 2003 Server Versionsp2 Editionx64
Microsoft ≫ Windows Xp Updategold Editionprofessional_x64
Microsoft ≫ Windows Xp Updatesp2
Microsoft ≫ Windows Xp Updatesp2 Editionprofessional_x64
Microsoft ≫ Internet Explorer Version7.0
Microsoft ≫ Windows 2003 Server Versionsp1
Microsoft ≫ Windows 2003 Server Versionsp1 Editionitanium
Microsoft ≫ Windows 2003 Server Versionsp1 Editionx64
Microsoft ≫ Windows 2003 Server Versionsp2
Microsoft ≫ Windows 2003 Server Versionsp2 Editionitanium
Microsoft ≫ Windows 2003 Server Versionsp2 Editionx64
Microsoft ≫ Windows Vista
Microsoft ≫ Windows Vista Updategold Editionx64
Microsoft ≫ Windows Xp Updategold Editionprofessional_x64
Microsoft ≫ Windows Xp Updatesp2
Microsoft ≫ Windows Xp Updatesp2 Editionprofessional_x64
Microsoft ≫ Windows 2003 Server Versionsp1 Editionitanium
Microsoft ≫ Windows 2003 Server Versionsp1 Editionx64
Microsoft ≫ Windows 2003 Server Versionsp2
Microsoft ≫ Windows 2003 Server Versionsp2 Editionitanium
Microsoft ≫ Windows 2003 Server Versionsp2 Editionx64
Microsoft ≫ Windows Vista
Microsoft ≫ Windows Vista Updategold Editionx64
Microsoft ≫ Windows Xp Updategold Editionprofessional_x64
Microsoft ≫ Windows Xp Updatesp2
Microsoft ≫ Windows Xp Updatesp2 Editionprofessional_x64
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 59.11% | 0.982 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|