Info

Disclosure

May 08, 2007

Discovery

Jan 18, 2007

Dates

Exploit

Unknown

Solution

Unknown

Description

A memory corruption flaw exists in Internet Explorer. It fails to properly handle HTML objects resulting in CMarkup objects being used after they have been freed. With a specially crafted web page, a context-dependent attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Local Access Required, Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation

Internet Explorer

References

Security Tracker: 1018019
CVE ID: 2007-0947 (see also: NVD)
Secunia Advisory ID: 23769
Bugtraq ID: 23772
Related OSVDB ID: 34399 34400 34401 34402 34404
Microsoft Knowledge Base Article: 931768
VUPEN Advisory: ADV-2007-1712
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-05/0145.html
Other Advisory URL: http://secunia.com/secunia_research/2007-36/advisory/
News Article: http://www.informationweek.com/news/showArticle.jhtml?articleID=199400216
Microsoft Security Bulletin: MS07-027

Credit

JJ Reyes -

Direct URL: http://osvdb.org/34403