CVE-2007-1162

Name of the Vulnerable Software and Affected Versions Internet Explorer 7

Description A certain ActiveX control in the Common Controls Replacement Project (CCRP) CCRP BrowseDialog Server allows remote attackers to cause a denial of service, resulting in an Internet Explorer 7 crash. This can be achieved via a long value of either the IsFolderAvailable or RootFolder property.

Recommendations For Internet Explorer 7, consider disabling the ActiveX control ccrpbds6.dll as a temporary workaround to minimize the risk of exploitation.