Summary
This security update resolves a privately reported vulnerability in the Vector Markup Language (VML) implementation in Windows. The vulnerability could allow remote code execution if a user viewed a specially crafted Web page using Internet Explorer.
Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Solution
Run Windows Update or apply patches available from the following website:
http://www.microsoft.com/technet/security/bulletin/ms07-050.mspx
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2007-1749 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Cumulative Security Update for Internet Explorer (956390)
- Microsoft Wireless LAN AutoConfig Service Remote Code Execution Vulnerability (970710)
- Microsoft IIS FTP Server 'Malformed FTP List Request' DOS Vulnerability
- Microsoft .NET Framework Authentication Bypass and Spoofing Vulnerabilities (2836440)
- Microsoft .NET Framework Remote Code Execution Vulnerability (2671605)