CVE-2007-0942

CVE Database · CVE-2007-0942

CVE-2007-0942

· N/AModified

CVSS v3.1

N/A

EPSS

32.20%

Published

May 8, 2007

Modified

Apr 22, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft Internet Explorer 5.01 SP4 on Windows 2000 SP4; 6 SP1 on Windows 2000 SP4; 6 and 7 on Windows XP SP2, or Windows Server 2003 SP1 or SP2; and possibly 7 on Windows Vista does not properly "instantiate certain COM objects as ActiveX controls," which allows remote attackers to execute arbitrary code via a crafted COM object from chtskdic.dll.

Affected Products (25)

microsoft · windows_2000

microsoft · ievulnerable

microsoft · internet_explorervulnerable

microsoft · windows_2003_server