CVE-2007-1749

Name of the Vulnerable Software and Affected Versions: Internet Explorer versions 5.01 through 7

Description: The issue is related to an integer underflow in the CDownloadSink class code within the Vector Markup Language (VML) component. This allows remote attackers to execute arbitrary code via compressed content with an invalid buffer size, triggering a heap-based buffer overflow. A remote code execution vulnerability exists in the VML implementation in Microsoft Windows, which could be exploited by constructing a specially crafted Web page or HTML e-mail, allowing remote code execution when a user views the Web page or the message.

Recommendations: For Internet Explorer versions 5.01 through 7, consider disabling the VML component until a patch is available. Restrict access to specially crafted Web pages or HTML e-mails to minimize the risk of exploitation. Avoid using compressed content with invalid buffer sizes in the affected VML implementation until the issue is resolved.