CVE-2007-0942

CVE-2007-0942 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Microsoft Internet Explorer 5.01 SP4 on Windows 2000 SP4; 6 SP1 on Windows 2000 SP4; 6 and 7 on Windows XP SP2, or Windows Server 2003 SP1 or SP2; and possibly 7 on Windows Vista does not properly "instantiate certain COM objects as ActiveX controls," which allows remote attackers to execute arbitrary code via a crafted COM object from chtskdic.dll.

Learn more about our Cis Benchmark Audit For Server Software.