CVE-2007-0218

Microsoft Internet Explorer 5.01 and 6 allows remote attackers to execute arbitrary code by instantiating certain COM objects from Urlmon.dll, which triggers memory corruption during a call to the IObjectSafety function...

Memory corruption

Microsoft Internet Explorer 5.01 and 6 allows remote attackers to execute arbitrary code by instantiating certain COM objects from Urlmon.dll, which triggers memory corruption during a call to the IObjectSafety function...

Microsoft Internet Explorer multiple security vulnerabilities

Multiple memory corruption on COM objects and HTML parsing, files rewrite...

Internet Explorer Multiple COM Objects Memory Corruption (MS07-027; CVE-2007-0942; CVE-2007-0944; CVE-2007-0945; CVE-2007-2221)

Microsoft Internet Explorer is the most widely used Internet browser. Multiple remote code execution vulnerabilities have been reported in Microsoft Internet Explorer. The vulnerabilities are due to several memory corruption errors in Microsoft Internet Explorer when instantiating the vulnerable...

CVE-2007-0942

Microsoft Internet Explorer 5.01 SP4 on Windows 2000 SP4; 6 SP1 on Windows 2000 SP4; 6 and 7 on Windows XP SP2, or Windows Server 2003 SP1 or SP2; and possibly 7 on Windows Vista does not properly "instantiate certain COM objects as ActiveX controls," which allows remote attackers to execute...

CVE-2007-0942

Microsoft Internet Explorer 5.01 SP4 on Windows 2000 SP4; 6 SP1 on Windows 2000 SP4; 6 and 7 on Windows XP SP2, or Windows Server 2003 SP1 or SP2; and possibly 7 on Windows Vista does not properly "instantiate certain COM objects as ActiveX controls," which allows remote attackers to execute...

EasyMail Objects IMAP4 Component Connect Method Remote Overflow

EasyMail Objects, a set of COM objects for supporting email protocols, is installed on the remote Windows host. The IMAP4 component of the version of the DjVu Browser Plug-in installed on the remote host reportedly is affected by a stack buffer overflow in the 'Connect' method that can be trigger...

Microsoft Internet Explorer multiple security vulnerabilities

Memory corruptions on COM objects instantiation and FTP server response parsing can be used for hidden malware installation...

Microsoft Internet Explorer vulnerable to remote code execution

Overview A vulnerability in the way Microsoft Internet Explorer instantiates COM objects may lead to execution of arbitrary code. Description Component Object Model, or COM objects, are used to enable interprocess communication and dynamic object creation within Microsoft Windows. Microsoft...

Internet Explorer COM Object Instantiation Memory Corruption (MS07-016; CVE-2007-0219; CVE-2007-4697)

Component Object Models COM Objects are used to enable data exchange between processes and the creation of dynamic object in different programming languages.Microsoft Internet Explorer is prone to multiple remote code execution vulnerabilities. The vulnerabilities are due to a memory corruption...

Code injection

Microsoft Internet Explorer 5.01, 6, and 7 uses certain COM objects from 1 Msb1fren.dll, 2 Htmlmm.ocx, and 3 Blnmgrps.dll as ActiveX controls, which allows remote attackers to execute arbitrary code via unspecified vectors, a different issue than CVE-2006-4697...

Microsoft Internet Explorer IMJPCKSI COM Object Instantiation Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability when instantiating certain COM objects. Successfully exploiting this issue allows remote attackers to execute arbitrary machine code in the context of the affected application. This facilitates the remote...

Microsoft Internet Explorer COM Object Instantiation Variant Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability when instantiating certain COM objects. Successfully exploiting this issue allows remote attackers to execute arbitrary machine code in the context of the affected application. This facilitates the remote...

Microsoft Internet Explorer fails to properly instantiate COM objects

Overview A vulnerability in the way Microsoft Internet Explorer instantiates COM objects may lead to execution of arbitrary code. Description Component Object Model, or COM objects are used to enable interprocess communication and dynamic object creation within Microsoft Windows. Microsoft Intern...

Update Protection against Microsoft Internet Explorer Memory Corruption Vulnerabilities (MS06-042)

Microsoft Internet Explorer is prone to multiple memory corruption vulnerabilities. The application fails to properly handle un-initialized COM objects and chained Cascading Style Sheets CSS. This flaw allows attackers to cause denial of service and possibly to execute arbitrary code by convincin...

CVE-2006-4495

Microsoft Internet Explorer allows remote attackers to cause a denial of service memory corruption and possibly execute arbitrary code by instantiating certain Windows 2000 ActiveX COM Objects including 1 ciodm.dll, 2 myinfo.dll, 3 msdxm.ocx, and 4 creator.dll...

CVE-2006-4494

Microsoft Visual Studio 6.0 allows remote attackers to cause a denial of service memory corruption and possibly execute arbitrary code by instantiating certain Visual Studio 6.0 ActiveX COM Objects in Internet Explorer, including 1 tcprops.dll, 2 fp30wec.dll, 3 mdt2db.dll, 4 mdt2qd.dll, and 5...

CVE-2006-4494

Microsoft Visual Studio 6.0 is affected. The vulnerability arises when remote attackers instantiate specific Visual Studio 6.0 ActiveX COM objects in Internet Explorer (tcprops.dll, fp30wec.dll, mdt2db.dll, mdt2qd.dll, vi30aut.dll), causing memory corruption that can lead to a denial of service a...

CVE-2006-4494

Microsoft Visual Studio 6.0 allows remote attackers to cause a denial of service memory corruption and possibly execute arbitrary code by instantiating certain Visual Studio 6.0 ActiveX COM Objects in Internet Explorer, including 1 tcprops.dll, 2 fp30wec.dll, 3 mdt2db.dll, 4 mdt2qd.dll, and 5...

CVE-2006-4495

The CVE-2006-4495 issue affects Microsoft Internet Explorer. It arises when IE instantiates certain Windows 2000 ActiveX COM objects not designed as controls (ciodm.dll, myinfo.dll, msdxm.ocx, creator.dll). The root cause is improper COM object instantiation within IE, which can lead to memory co...