CVE-2008-4259

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer version 7

Description: A remote code execution issue exists due to attempts to access uninitialized memory in certain situations. An attacker could exploit this by constructing a specially crafted Web page. When a user views the Web page, it could allow remote code execution, potentially giving the attacker the same user rights as the logged-on user.

Recommendations: For Microsoft Internet Explorer version 7, consider avoiding the use of WebDAV requests for files with long names until a patch is available. As a temporary workaround, restrict access to crafted HTML documents that could trigger memory corruption.