Unrated severityNVD Advisory· Published May 8, 2007· Updated Jun 16, 2026
CVE-2007-0947
CVE-2007-0947
Description
Use-after-free vulnerability in Microsoft Internet Explorer 7 on Windows XP SP2, Windows Server 2003 SP1 or SP2, or Windows Vista allows remote attackers to execute arbitrary code via crafted HTML objects, resulting in accessing deallocated memory of CMarkup objects, aka the second of two "HTML Objects Memory Corruption Vulnerabilities" and a different issue than CVE-2007-0946.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:internet_explorer:7.0:*:*:*:*:*:*:*
- (no CPE)range: 7
Patches
Vulnerability mechanics
References
11- secunia.com/advisories/23769nvdPatchVendor Advisory
- secunia.com/secunia_research/2007-36/advisory/nvdPatchVendor Advisory
- www.securityfocus.com/bid/23772nvdPatch
- www.vupen.com/english/advisories/2007/1712nvdVendor Advisory
- www.us-cert.gov/cas/techalerts/TA07-128A.htmlnvdUS Government Resource
- www.osvdb.org/34403nvd
- www.securityfocus.com/archive/1/468871/100/200/threadednvd
- www.securitytracker.com/idnvd
- docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-027nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/33256nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2048nvd
News mentions
0No linked articles in our index yet.