CVE-2007-1751

Microsoft Internet Explorer - Use of Uninitialized Resource

Title source: rule

Description

Microsoft Internet Explorer 5.01, 6, and 7 allows remote attackers to execute arbitrary code by causing Internet Explorer to access an uninitialized or deleted object, related to prototype variables and table cells, aka "Uninitialized Memory Corruption Vulnerability."

References (12)

[Broken Link] http://osvdb.org/35351

[Broken Link, Vendor Advisory] http://secunia.com/advisories/25627

[Broken Link, Third Party Advisory, VDB Entry] http://securitytracker.com/id?1018235

[Broken Link, Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/471210/100/0/threaded

[Broken Link, Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/471947/100/0/threaded

[Broken Link, Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/24418

[Third Party Advisory, US Government Resource] http://www.us-cert.gov/cas/techalerts/TA07-163A.html

[Broken Link, Vendor Advisory] http://www.vupen.com/english/advisories/2007/2153

[Third Party Advisory, VDB Entry] http://www.zerodayinitiative.com/advisories/ZDI-07-038.html

[Patch, Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-033

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/34626

[Tool Signature] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1978

Scores

EPSS 0.6118

EPSS Percentile 98.3%

Classification

CWE

CWE-908

Status draft

Affected Products (4)

microsoft/internet_explorer

microsoft/internet_explorer

microsoft/internet_explorer

microsoft/internet_explorer

Timeline

Published Jun 12, 2007

Tracked Since Feb 18, 2026