CVE-2007-0940

Name of the Vulnerable Software and Affected Versions: Microsoft CAPICOM and BizTalk Server 2004 SP1 and SP2

Description: The issue is related to an unspecified vulnerability in the Cryptographic API Component Object Model Certificates ActiveX control, which can allow remote attackers to execute arbitrary code. This vulnerability is associated with errors in code generation management. The exploitation of this issue may enable a remote attacker to execute arbitrary code.

Recommendations: For Microsoft CAPICOM and BizTalk Server 2004 SP1 and SP2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.