CVE-2007-0371

Common Controls Replacement Browsedialog Server - Denial of Service

Title source: rule

Description

A certain ActiveX control in the Common Controls Replacement Project (CCRP) CCRP BrowseDialog Server (ccrpbds6.dll) allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long CCRP_BDc.SelectedFolder property value.

Exploits (1)

exploitdb WORKING POC VERIFIED

by shinnai · htmldoswindows

https://www.exploit-db.com/exploits/3155

View Code ZIP pw:eip

References (3)

[Exploit, Vendor Advisory] http://www.securityfocus.com/bid/22110

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/3155

[Third Party Advisory, VDB Entry] http://osvdb.org/34647

Scores

EPSS 0.0635

EPSS Percentile 91.0%

Details

Status published

Products (1)

common_controls_replacement_project/browsedialog_server

Published Jan 19, 2007

Tracked Since Feb 18, 2026