Summary
Unspecified vulnerability in the pdwizard.ocx ActiveX object for Internet Explorer 5.01, 6 SP1, and 7 allows remote attackers to execute arbitrary code via unknown vectors related to Microsoft Visual Basic 6 objects and memory corruption, aka ActiveX Object Memory Corruption Vulnerability.
Solution
Run Windows Update or apply patches available from the following website:
http://www.microsoft.com/technet/security/bulletin/ms07-045.mspx
Severity
Classification
-
CVE CVE-2007-0943, CVE-2007-2216, CVE-2007-3041 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Microsoft Data Analyzer ActiveX Control Vulnerability (978262)
- Cumulative Security Update for Internet Explorer (937143)
- Microsoft .NET Framework Privilege Elevation Vulnerability (2800277)
- Microsoft .NET Framework Remote Code Execution Vulnerabilities (2878890)
- ADODB.Stream object from Internet Explorer (KB870669)