CVE-2007-2222 in Internet Explorerinfo

Summary

Multiple buffer overflows in the (1) ActiveListen (Xlisten.dll) and (2) ActiveVoice (Xvoice.dll) speech controls, as used by Microsoft Internet Explorer 5.01, 6, and 7, allow remote attackers to execute arbitrary code via a crafted ActiveX object that triggers memory corruption, as demonstrated via the ModeName parameter to the FindEngine function in ACTIVEVOICEPROJECTLib.DirectSS.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

04/24/2007

Disclosure

06/12/2007

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-119

Exploit

Download

CVSS

6.3

EPSS

0.63607

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-2222
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-2222
CVE Details	https://www.cvedetails.com/cve/CVE-2007-2222/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!