Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2007-2222

Published: 12/06/2007 Updated: 23/07/2021
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 940
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Microsoft

Vulnerability Summary

Multiple buffer overflows in the (1) ActiveListen (Xlisten.dll) and (2) ActiveVoice (Xvoice.dll) speech controls, as used by Microsoft Internet Explorer 5.01, 6, and 7, allow remote malicious users to execute arbitrary code via a crafted ActiveX object that triggers memory corruption, as demonstrated via the ModeName parameter to the FindEngine function in ACTIVEVOICEPROJECTLib.DirectSS.

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft internet_explorer 5.01

microsoft internet_explorer 6

microsoft internet_explorer 7.0

Exploits

Exploit DB: Microsoft Speech API ActiveX Control (Windows XP SP2) - Remote Buffer Overflow (MS07-033)
<!-- 630 10/06/2007 Microsoft Windows DirectSpeechSynthesis Module (XVoicedll 4042512) / DirectSpeechRecognition Module (Xlistendll 4042512) remote buffer overflow exploit/ xp sp2 version both dlls are vulnerable, this is the poc for the first one worked regardless of bootini settings, remotely and by dragging the html file in the bro ...
Exploit DB: Microsoft Speech API ActiveX Control (Windows 2000 SP4) - Remote Buffer Overflow (MS07-033)
<!-- 01/06/2007 231950 Microsoft Windows DirectSpeechSynthesis Module (XVoicedll) / DirectSpeechRecognition Module (Xlistendll) remote buffer overflow exploit / 2k sp4 seh version both the dlls are located in %SystemRoot%\speech folder and they are vulnerable to the same issue while on 2k it depends on activex settings, under xp they are b ...

References

CWE-119http://retrogod.altervista.org/win_speech_2k_sp4.htmlhttp://retrogod.altervista.org/win_speech_xp_sp2.htmlhttp://www.us-cert.gov/cas/techalerts/TA07-163A.htmlhttp://www.kb.cert.org/vuls/id/507433http://www.securityfocus.com/bid/24426http://securitytracker.com/id?1018235http://secunia.com/advisories/25627http://www.vupen.com/english/advisories/2007/2153http://osvdb.org/35353http://www.exploit-db.com/exploits/4065https://exchange.xforce.ibmcloud.com/vulnerabilities/34630https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2031https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-033http://www.securityfocus.com/archive/1/471947/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/4066/https://www.kb.cert.org/vuls/id/507433
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111CVE-2024-32884IDORCVE-2023-1000CVE-2024-33260CVE-2024-3682reflected XSSrace conditionCVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook