CVE-2007-2223

CVE-2007-2223 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Microsoft XML Core Services (MSXML) 3.0 through 6.0 allows remote attackers to execute arbitrary code via the substringData method on a (1) TextNode or (2) XMLDOM object, which causes an integer overflow that leads to a buffer overflow.

Learn more about our Web Application Penetration Testing UK.