9.3

CVE-2007-1751

Microsoft Internet Explorer 5.01, 6, and 7 allows remote attackers to execute arbitrary code by causing Internet Explorer to access an uninitialized or deleted object, related to prototype variables and table cells, aka "Uninitialized Memory Corruption Vulnerability."

Data is provided by the National Vulnerability Database (NVD)
MicrosoftInternet Explorer Version5.01 Updatesp4
   MicrosoftWindows 2000 Version- Updatesp4
MicrosoftInternet Explorer Version6 Updatesp1
   MicrosoftWindows 2000 Version- Updatesp4
MicrosoftInternet Explorer Version6
   MicrosoftWindows 2003 Server Version- Updatesp1
   MicrosoftWindows 2003 Server Version- Updatesp2
   MicrosoftWindows Vista Version-
   MicrosoftWindows Xp Version- Updatesp2
MicrosoftInternet Explorer Version7.0
   MicrosoftWindows 2003 Server Version- Updatesp1
   MicrosoftWindows 2003 Server Version- Updatesp2
   MicrosoftWindows Vista Version-
   MicrosoftWindows Xp Version- Updatesp2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 57.7% 0.981
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
CWE-908 Use of Uninitialized Resource

The product uses or accesses a resource that has not been initialized.

http://www.securityfocus.com/archive/1/471947/100/0/threaded
Third Party Advisory
Broken Link
VDB Entry
http://www.us-cert.gov/cas/techalerts/TA07-163A.html
Third Party Advisory
US Government Resource
http://secunia.com/advisories/25627
Vendor Advisory
Broken Link
http://securitytracker.com/id?1018235
Third Party Advisory
Broken Link
VDB Entry
http://www.securityfocus.com/archive/1/471210/100/0/threaded
Third Party Advisory
Broken Link
VDB Entry
http://www.securityfocus.com/bid/24418
Third Party Advisory
Broken Link
VDB Entry