CVE-2007-0217

CVE Database · CVE-2007-0217

CVE-2007-0217

· N/AModified

CVSS v3.1

N/A

EPSS

58.12%

Published

Feb 13, 2007

Modified

Apr 22, 2026

Public PoC / Exploit (2)

All weaponized →

Exploit-DBMicrosoft Internet Explorer - FTP Server Response Denial of Service (MS07-016)TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The wininet.dll FTP client code in Microsoft Internet Explorer 5.01 and 6 might allow remote attackers to execute arbitrary code via an FTP server response of a specific length that causes a terminating null byte to be written outside of a buffer, which causes heap corruption.

Affected Products (12)

microsoft · windows_2000

microsoft · internet_explorervulnerable

microsoft · windows_2000

microsoft · ievulnerable

microsoft · windows_2003_server

microsoft · windows_xp

microsoft · internet_explorervulnerable

References (20)

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=473

http://secunia.com/advisories/24156

http://www.kb.cert.org/vuls/id/613564