Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2007-0612

Multiple ActiveX controls in Microsoft Windows 2000, XP, 2003, and Vista allows remote attackers to cause a denial of service (Internet Explorer crash) by accessing the bgColor, fgColor, linkColor, alinkColor, vlinkColor, or defaultCharset properties in the (1) giffile, (2) htmlfile, (3) jpegfile, (4) mhtmlfile, (5) ODCfile, (6) pjpegfile, (7) pngfile, (8) xbmfile, (9) xmlfile, (10) xslfile, or (11) wdfile objects in (a) mshtml.dll; or the (12) TriEditDocument.TriEditDocument or (13) TriEditDocument.TriEditDocument.1 objects in (b) triedit.dll, which cause a NULL pointer dereference.

  • Published: Jan 31, 2007
  • Updated: Apr 13, 2023
  • CVE: CVE-2007-0612
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.8
  • AV:N/AC:L/Au:N/C:N/I:N/A:C

No CWE or OWASP classifications available.

Software From Fixed in
microsoft / ie 6.0-sp1 6.0-sp1.x
microsoft / ie 5.0_ta3 5.0_ta3.x
microsoft / ie 7.0 7.0.x
microsoft / internet_explorer 5.0.1 5.0.1.x
microsoft / internet_explorer 5.0.1-sp4 5.0.1-sp4.x
microsoft / internet_explorer 5.0.1-sp1 5.0.1-sp1.x
microsoft / internet_explorer 5.5 5.5.x
microsoft / internet_explorer 6.0 6.0.x
microsoft / internet_explorer 7.0-beta1 7.0-beta1.x
microsoft / internet_explorer 7.0-beta2 7.0-beta2.x