Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com

CVE-2007-0217

Description

The wininet.dll FTP client code in Microsoft Internet Explorer 5.01 and 6 might allow remote attackers to execute arbitrary code via an FTP server response of a specific length that causes a terminating null byte to be written outside of a buffer, which causes heap corruption.

POC

Reference

- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-016

Github

No PoCs found on GitHub currently.