PT-2007-1522 · Microsoft · Windows 2003+2

Fabrice Desclaux

Published

2007-02-13

Updated

2018-10-12

CVE-2007-0026

CVSS v2.0

7.6

High

Vector

AV:N/AC:H/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions 2000 SP4, XP SP2, and 2003 SP1

Description The issue allows remote attackers to execute arbitrary code via an RTF file with a malformed OLE object, triggering memory corruption.

Recommendations For Microsoft Windows 2000 SP4, consider applying a patch to fix the OLE Dialog component issue. For Microsoft Windows XP SP2, consider applying a patch to fix the OLE Dialog component issue. For Microsoft Windows 2003 SP1, consider applying a patch to fix the OLE Dialog component issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-0026

Affected Products

Windows 2000

Windows 2003

Windows Xp

PT-2007-1522 · Microsoft · Windows 2003+2

CVE-2007-0026

Related Identifiers

Affected Products

References · 10