VYPR
Unrated severityNVD Advisory· Published Aug 14, 2007· Updated Jun 16, 2026

CVE-2007-1749

CVE-2007-1749

Description

Integer underflow in the CDownloadSink class code in the Vector Markup Language (VML) component (VGX.DLL), as used in Internet Explorer 5.01, 6, and 7 allows remote attackers to execute arbitrary code via compressed content with an invalid buffer size, which triggers a heap-based buffer overflow.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:microsoft:internet_explorer:5.01:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:microsoft:internet_explorer:5.01:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:*
    • cpe:2.3:a:microsoft:internet_explorer:7:*:*:*:*:*:*:*
    • (no CPE)range: 5.01, 6, and 7

Patches

Vulnerability mechanics

References

11

News mentions

0

No linked articles in our index yet.