CVE-2007-2222

NONECVSS 0.0

0.0

Multiple buffer overflows in the (1) ActiveListen (Xlisten.dll) and (2) ActiveVoice (Xvoice.dll) speech controls, as used by Microsoft Internet Explorer 5.01, 6, and 7, allow remote attackers to execute arbitrary code via a crafted ActiveX object that triggers memory corruption, as demonstrated via the ModeName parameter to the FindEngine function in ACTIVEVOICEPROJECTLib.DirectSS.

🔗 References (28)

secure@microsofthttp://osvdb.org/35353
secure@microsofthttp://retrogod.altervista.org/win_speech_2k_sp4.html
secure@microsofthttp://retrogod.altervista.org/win_speech_xp_sp2.html
secure@microsofthttp://secunia.com/advisories/25627
secure@microsofthttp://securitytracker.com/id?1018235
secure@microsofthttp://www.exploit-db.com/exploits/4065
secure@microsofthttp://www.kb.cert.org/vuls/id/507433
secure@microsofthttp://www.securityfocus.com/archive/1/471947/100/0/threaded
secure@microsofthttp://www.securityfocus.com/bid/24426
secure@microsofthttp://www.us-cert.gov/cas/techalerts/TA07-163A.html
secure@microsofthttp://www.vupen.com/english/advisories/2007/2153
secure@microsofthttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-033
secure@microsofthttps://exchange.xforce.ibmcloud.com/vulnerabilities/34630
secure@microsofthttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2031
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/35353

Is Your Infrastructure Affected by CVE-2007-2222?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-2222

📅 Published

🔄 Last Modified

🔗 References (28)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-2222?