Use-after-free vulnerability in the CRecalcProperty function in mshtml.dll in Microsoft Internet Explorer 5.01 through 7 allows remote attackers to execute arbitrary code by calling the setExpression method and then modifying the outerHTML property of an HTML element, one variant of "Uninitialized Memory Corruption Vulnerability."
Vector
NETWORK
Complexity
MEDIUM
Authentication
NONE
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE
Microsoft Internet Explorer 7.0.5730.11
Microsoft ie 7.0_beta3
Microsoft ie 7.0_beta2
Microsoft ie 7.0_beta1
Microsoft Internet Explorer 7.0 Beta
Microsoft Internet Explorer 7.0
Microsoft Internet Explorer 7
Microsoft Internet Explorer 6.0.2900.2180
Microsoft Internet Explorer 6.0.2900
Microsoft Internet Explorer 6.0.2800.1106
Microsoft Internet Explorer 6.0.2800
Microsoft Internet Explorer 6.0.2600
Microsoft Ie 6.0 Sp2 (not an official CPE)
Microsoft Ie 6.0 Sp1 (not an official CPE)
Microsoft Internet Explorer 6.0
Microsoft Internet Explorer 6 Service Pack 1
Microsoft Internet Explorer 6
Microsoft Ie 5.x (not an official CPE)
Microsoft Internet Explorer 5.5 SP2
Microsoft Internet Explorer 5.5 preview
Microsoft Internet Explorer 5.5 SP1
Microsoft ie 5.5
Microsoft Internet Explorer 5.2.3
Microsoft Internet Explorer 5.01 Service Pack 4
Microsoft Internet Explorer 5.01 SP3
Microsoft Internet Explorer 5.01 SP2
Microsoft Internet Explorer 5.01 SP1
Microsoft Internet Explorer 5.01
Microsoft Internet Explorer 5