Vulnerability in N/a
CVE-2007-2216
The tblinf32.dll (aka vstlbinf.dll) ActiveX control for Internet Explorer 5.01, 6 SP1, and 7 uses an incorrect IObjectsafety implementation, which allows remote attackers to execute arbitrary code by requesting the HelpString property, inv…
EPSS: 0.766 (99.0th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 36396 (x_refsource_OSVDB, vdb-entry)
- MS07-045 (x_refsource_MS, vendor-advisory)
- TA07-226A (x_refsource_CERT, third-party-advisory)
- oval:org.mitre.oval:def:2109 (signature, x_refsource_OVAL, vdb-entry)
- ADV-2007-2869 (vdb-entry, x_refsource_VUPEN)
- 26419 (x_refsource_SECUNIA, third-party-advisory)
- 25289 (vdb-entry, x_refsource_BID)
- 1018562 (vdb-entry, x_refsource_SECTRACK)
- 20070815 TlbInf32 ActiveX Command Execution (mailing-list, x_refsource_BUGTRAQ)