CVEs-PoC/2007/CVE-2007-1749.md at 52f3262c8d52545fc4e20c2a38454fc446c51385

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-09 23:27:33 +02:00

Files

T

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

Integer underflow in the CDownloadSink class code in the Vector Markup Language (VML) component (VGX.DLL), as used in Internet Explorer 5.01, 6, and 7 allows remote attackers to execute arbitrary code via compressed content with an invalid buffer size, which triggers a heap-based buffer overflow.

POC

Reference

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-050
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-050

Github

No PoCs found on GitHub currently.

884 B Raw Blame History

CVE-2007-1749

Description

POC

Reference

Github

884 B

Raw Blame History