Microsoft Windows Vector Markup Language Vulnerabilities (929969) Network Vulnerability

Summary

Remote exploitation of an integer overflow vulnerability in the Vector Markup Language (VML) support in multiple Microsoft products allows attackers to execute arbitrary code within the context of the user running the vulnerable application.

Solution

Run Windows Update or apply patches available on the following web site: http://www.microsoft.com/technet/security/Bulletin/MS07-004.mspx

References

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=462
http://secunia.com/advisories/23677
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-0024
http://www.kb.cert.org/vuls/id/122084

Updated on 2015-03-25

Severity

Classification

CVE CVE-2007-0024

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Microsoft .NET Framework Privilege Elevation Vulnerability (2800277)
Buffer Overrun in Messenger Service (828035)
Microsoft .NET Framework Multiple Vulnerabilities (2861561)
Microsoft Internet Explorer Data Stream Handling Remote Code Execution Vulnerability (947864)
Microsoft .NET Framework and Silverlight Remote Code Execution Vulnerability (2604930)

Take action and discover your vulnerabilities