Vulnerability in N/a
CVE-2007-3903
Microsoft Internet Explorer 6 and 7 allows remote attackers to execute arbitrary code via uninitialized or deleted objects used in repeated calls to the (1) cloneNode or (2) nodeValue JavaScript function, a different issue than CVE-2007-39…
EPSS: 0.552 (98.1th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 1019078 (vdb-entry, x_refsource_SECTRACK)
- 20071211 ZDI-07-074: Microsoft Internet Explorer Node Manipulation Memory Corruption (mailing-list, x_refsource_BUGTRAQ)
- www.zerodayinitiative.com/advisories/ZDI-07-074.html (x_refsource_MISC)
- SSRT071506 (x_refsource_HP, vendor-advisory)
- 28036 (x_refsource_SECUNIA, third-party-advisory)
- oval:org.mitre.oval:def:4553 (x_refsource_OVAL, signature, vdb-entry)
- MS07-069 (x_refsource_MS, vendor-advisory)
- ADV-2007-4184 (vdb-entry, x_refsource_VUPEN)
- ie-clonenode-nodevalue-code-execution(38714) (vdb-entry, x_refsource_XF)
- TA07-345A (x_refsource_CERT, third-party-advisory)