[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Speech Control Memory Corruption Vulnerability

ID: oval:org.mitre.oval:def:2031Date: (C)2007-06-13   (M)2021-06-02
Class: VULNERABILITYFamily: windows




Multiple buffer overflows in the (1) ActiveListen (Xlisten.dll) and (2) ActiveVoice (Xvoice.dll) speech controls, as used by Microsoft Internet Explorer 5.01, 6, and 7, allow remote attackers to execute arbitrary code via a crafted ActiveX object that triggers memory corruption, as demonstrated via the ModeName parameter to the FindEngine function in ACTIVEVOICEPROJECTLib.DirectSS.

Platform:
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Product:
Microsoft Internet Explorer
Reference:
CVE-2007-2222
CVE    1
CVE-2007-2222
CPE    12
cpe:/a:microsoft:ie:5.01:sp4
cpe:/o:microsoft:windows_2000::sp4
cpe:/o:microsoft:windows_xp::sp1:64bit
cpe:/o:microsoft:windows_xp
...

© SecPod Technologies