CVE-2007-0099

2007-01-0820:28:00

CWE-362

mitre

web.nvd.nist.gov

cve-2007-0099

race condition

msxml3 module

remote code execution

denial of service

application crash

xml document

iframe

memory corruption

nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

Low

EPSS

0.951

Percentile

99.3%

JSON

Race condition in the msxml3 module in Microsoft XML Core Services 3.0, as used in Internet Explorer 6 and other applications, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via many nested tags in an XML document in an IFRAME, when synchronous document rendering is frequently disrupted with asynchronous events, as demonstrated using a JavaScript timer, which can trigger NULL pointer dereferences or memory corruption, aka “MSXML Memory Corruption Vulnerability.”

Affected configurations

Nvd

Node

microsoftxml_core_servicesMatch3.0

AND

microsoftinternet_explorerMatch6

VendorProductVersionCPE
microsoftxml_core_services3.0cpe:2.3:a:microsoft:xml_core_services:3.0:*:*:*:*:*:*:*
microsoftinternet_explorer6cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	xml_core_services	3.0	cpe:2.3:a:microsoft:xml_core_services:3.0:::::::*
microsoft	internet_explorer	6	cpe:2.3:a:microsoft:internet_explorer:6:::::::*