Multiple buffer overflows in the (1) ActiveListen (Xlisten.dll) and (2) ActiveVoice (Xvoice.dll) speech controls, as used by Microsoft Internet Explorer 5.01, 6, and 7, allow remote attackers to execute arbitrary code via a crafted ActiveX object that triggers memory corruption, as demonstrated via the ModeName parameter to the FindEngine function in ACTIVEVOICEPROJECTLib.DirectSS.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: microsoft
Published: 2007-06-12T19:00:00
Updated: 2018-10-16T14:57:01
Reserved: 2007-04-24T00:00:00
Link: CVE-2007-2222
JSON object: View
NVD Information
Status : Modified
Published: 2007-06-12T19:30:00.000
Modified: 2021-07-23T15:05:26.630
Link: CVE-2007-2222
JSON object: View
Redhat Information
No data.
CWE