Internet Explorer tblinf32.dll ActiveX Object Code Execution (MS07-045; CVE-2007-2216)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer IE ActiveX control tblinf32.dll. ActiveX controls are reusable software components based on Microsoft Component Object Model COM. To trigger the vulnerability, an attacker can create a malicious web page that...

Microsoft IE tblinf32.dll ActiveX控件远程代码执行漏洞（MS07-045）

BUGTRAQ ID: 25289 CVECAN ID: CVE-2007-2216 Internet Explorer是微软发布的非常流行的WEB浏览器。 IE的tblinf32.dll ActiveX控件实现上存在漏洞，远程攻击者可能利用此漏洞控制用户系统。 IE中tblinf32.dll或vstlbinf.dll ActiveX控件没有正确地实现IObjectsafety，如果用户受骗访问了恶意站点的话就可能导致执行任意指令。成功利用此漏洞的攻击者可以获得与本地用户相同的用户权限，那些帐户被配置为拥有较少系统用户权限的用户比具有管理用户权限的用户受到的影响要小。 Microsoft...

Internet Explorer tblinf32.dll ActiveX IObjectsafety vulnerability

Added: 08/17/2007 CVE: CVE-2007-2216 BID: 25289 OSVDB: 36396 Background The IObjectsafety interface provides methods to get and set safety options for objects which support untrusted clients. Problem The tblinf32.dll ActiveX control implements IObjectsafety incorrectly, allowing execution of code...

Internet Explorer tblinf32.dll ActiveX IObjectsafety vulnerability

Added: 08/17/2007 CVE: CVE-2007-2216 BID: 25289 OSVDB: 36396 Background The IObjectsafety interface provides methods to get and set safety options for objects which support untrusted clients. Problem The tblinf32.dll ActiveX control implements IObjectsafety incorrectly, allowing execution of code...

Internet Explorer tblinf32.dll ActiveX IObjectsafety vulnerability

Added: 08/17/2007 CVE: CVE-2007-2216 BID: 25289 OSVDB: 36396 Background The IObjectsafety interface provides methods to get and set safety options for objects which support untrusted clients. Problem The tblinf32.dll ActiveX control implements IObjectsafety incorrectly, allowing execution of code...

CVE-2007-2216

The tblinf32.dll aka vstlbinf.dll ActiveX control for Internet Explorer 5.01, 6 SP1, and 7 uses an incorrect IObjectsafety implementation, which allows remote attackers to execute arbitrary code by requesting the HelpString property, involving a crafted DLL file argument to the TypeLibInfoFromFil...

CVE-2007-2216

Summary: CVE-2007-2216 affects the tblinf32.dll ActiveX control in Internet Explorer (versions 5.01, 6 SP1, 7). The vulnerability stems from an incorrect IObjectsafety implementation, enabling remote code execution when a user loads a crafted web page. The attack path involves a crafted DLL argum...

Microsoft Internet Explorer 5.0.1 - TBLinf32.dll ActiveX Control Remote Code Execution

Microsoft Internet Explorer 5.0.1 - TBLinf32.dll ActiveX Control Remote Code Execution source: https://www.securityfocus.com/bid/25289/info The Microsoft Visual Basic 6 TypeLib Information Library TLI ActiveX control is prone to a remote code-execution vulnerability. An attacker may exploit this...

Microsoft Visual Basic 6 TBLinf32.DLL ActiveX Control Remote Code Execution Vulnerability

Description The Microsoft Visual Basic 6 TypeLib Information Library TLI ActiveX control is prone to a remote code-execution vulnerability. An attacker may exploit this issue by enticing victims into opening a maliciously crafted HTML document. Successfully exploiting this issue allows remote...