|
|
|
|
| |
Credit:
The information has been provided by Microsoft Product Security.
The original article can be found at: http://www.microsoft.com/technet/security/bulletin/ms07-050.mspx
|
| |
Affected and Non-Affected Software:
The software listed here has been tested to determine which versions or editions are affected. Other versions or editions are either past their support life cycle or are not affected. To determine the support life cycle for your software version or edition, visit Microsoft Support Lifecycle.
Affected Software:
Operating System - Component - Maximum Security Impact - Aggregate Severity Rating - Bulletins Replaced by This Update
Internet Explorer 5.01 and Internet Explorer 6 Service Pack 1
* Microsoft Windows 2000 Service Pack 4 - Microsoft Internet Explorer 5.01 Service Pack 4 - Remote Code Execution - Critical - MS07-004
* Microsoft Windows 2000 Service Pack 4 - Microsoft Internet Explorer 6 Service Pack 1 - Remote Code Execution - Critical - MS07-004
Internet Explorer 6
* Windows XP Service Pack 2 - Microsoft Internet Explorer 6 - Remote Code Execution - Critical - MS07-004
* Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2 - Microsoft Internet Explorer 6 - Remote Code Execution - Critical - MS07-004
* Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2 - Microsoft Internet Explorer 6 - Remote Code Execution - Critical - MS07-004
* Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2 - Microsoft Internet Explorer 6 - Remote Code Execution - Critical - MS07-004
* Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems - Microsoft Internet Explorer 6 - Remote Code Execution - Critical - MS07-004
Internet Explorer 7
* Windows XP Service Pack 2 - Windows Internet Explorer 7 - Remote Code Execution - Critical - MS07-004
* Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2 - Windows Internet Explorer 7 - Remote Code Execution - Critical - MS07-004
* Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2 - Windows Internet Explorer 7 - Remote Code Execution - Critical - MS07-004
* Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2 - Windows Internet Explorer 7 - Remote Code Execution - Critical - MS07-004
* Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems - Windows Internet Explorer 7 - Remote Code Execution - Critical - MS07-004
* Windows Vista - Windows Internet Explorer 7 - Remote Code Execution - Critical - None
* Windows Vista x64 Edition Windows - Internet Explorer 7 - Remote Code Execution - Critical - None
VML Buffer Overrun Vulnerability - CVE-2007-1749
A remote code execution vulnerability exists in the Vector Markup Language (VML) implementation in Microsoft Windows. An attacker could exploit the vulnerability by constructing a specially crafted Web page or HTML e-mail. When a user views the Web page or the message, the vulnerability could allow remote code execution.
CVE Information:
CVE-2007-1749
|
|
|
|
|
