Back to search
CVE-2008-1086
Published: Apr 8, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
The HxTocCtrl ActiveX control (hxvz.dll), as used in Microsoft Internet Explorer 5.01 SP4 and 6 SP1, in Windows XP SP2, Server 2003 SP1 and SP2, Vista SP1, and Server 2008, allows remote attackers to execute arbitrary code via malformed arguments, which triggers memory corruption.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
TA08-099A
third-party-advisory
x_refsource_CERT
SSRT080048
vendor-advisory
x_refsource_HP
oval:org.mitre.oval:def:5475
vdb-entry
signature
x_refsource_OVAL
HPSBST02329
vendor-advisory
x_refsource_HP
29714
third-party-advisory
x_refsource_SECUNIA
1019800
vdb-entry
x_refsource_SECTRACK
ie-hxvz-code-execution(41464)
vdb-entry
x_refsource_XF
20080408 Microsoft HxTocCtrl ActiveX Control Invalid Param Heap Corruption Vulnerability
third-party-advisory
x_refsource_IDEFENSE
ADV-2008-1147
vdb-entry
x_refsource_VUPEN
28606
vdb-entry
x_refsource_BID
MS08-023
vendor-advisory
x_refsource_MS
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now