CVE-2007-3903 - компьютерная безопасность: уязвимости и эксплоиты

[RU] switch to
English Version

CVE CVE-2007-3903
Статус UNKNOWN
Описание Microsoft Internet Explorer 6 and 7 allows remote attackers to execute arbitrary code via uninitialized or deleted objects used in repeated calls to the (1) cloneNode or (2) nodeValue JavaScript function, a different issue than CVE-2007-3902 and CVE-2007-5344, a variant of "Uninitialized Memory Corruption Vulnerability."
Важность Medium
CVSS score 6,8
CVSS vector (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Phase ASSIGNED (03.10.2011)
NVD: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-3903
References BID : 26816
BUGTRAQ : 20071211 ZDI-07-074: Microsoft Internet Explorer Node Manipulation Memory Corruption
CERT : TA07-345A
HP : SSRT071506
HP : SSRT071506
MISC : http://www.zerodayinitiative.com/advisories/ZDI-07...
MS : MS07-069
OVAL : oval:org.mitre.oval:def:4553
SECTRACK : 1019078
SECUNIA : 28036
VUPEN : ADV-2007-4184
XF : ie-clonenode-nodevalue-code-execution(38714)
SecurityVulns: Многочисленные уязвимости в Microsoft Internet Explorer

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород

test server