VYPR
Unrated severityNVD Advisory· Published Jan 31, 2007· Updated Jun 16, 2026

CVE-2007-0612

CVE-2007-0612

Description

Multiple ActiveX controls in Microsoft Windows 2000, XP, 2003, and Vista allows remote attackers to cause a denial of service (Internet Explorer crash) by accessing the bgColor, fgColor, linkColor, alinkColor, vlinkColor, or defaultCharset properties in the (1) giffile, (2) htmlfile, (3) jpegfile, (4) mhtmlfile, (5) ODCfile, (6) pjpegfile, (7) pngfile, (8) xbmfile, (9) xmlfile, (10) xslfile, or (11) wdfile objects in (a) mshtml.dll; or the (12) TriEditDocument.TriEditDocument or (13) TriEditDocument.TriEditDocument.1 objects in (b) triedit.dll, which cause a NULL pointer dereference.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

11
  • Microsoft/Ie3 versions
    cpe:2.3:a:microsoft:ie:5.0_ta3:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:microsoft:ie:5.0_ta3:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:ie:6.0:sp1:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:ie:7.0:*:vista:*:*:*:*:*
  • cpe:2.3:a:microsoft:internet_explorer:5.0.1:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:microsoft:internet_explorer:5.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp1:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp4:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:7.0:beta1:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:7.0:beta2:*:*:*:*:*:*
  • Range: 2000, XP, 2003, Vista

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.