CVE-2007-1162

CCRP BrowseDialog Server - DoS

Title source: llm

Description

A certain ActiveX control in the Common Controls Replacement Project (CCRP) CCRP BrowseDialog Server (ccrpbds6.dll) allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long (1) IsFolderAvailable or (2) RootFolder property value, different vectors than CVE-2007-0371.

Exploits (1)

exploitdb WORKING POC VERIFIED

by shinnai · htmldoswindows

https://www.exploit-db.com/exploits/3350

View Code ZIP pw:eip

References (4)

[Exploit] http://www.securityfocus.com/data/vulnerabilities/exploits/22645.html

[Third Party Advisory, VDB Entry] http://osvdb.org/34963

[Exploit] http://www.securityfocus.com/bid/22645

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/3350

Scores

EPSS 0.0574

EPSS Percentile 90.5%

Details

Status published

Products (1)

common_controls_replacement_project/browsedialog_server

Published Mar 02, 2007

Tracked Since Feb 18, 2026