Microsoft Internet Explorer HTML Objects 'substringData()' Remote Code Execution Vulnerability

Bugtraq ID: 29556
Class: Boundary Condition Error
CVE: CVE-2008-1442
Remote: Yes
Local: No
Published: Jun 10 2008 12:00AM
Updated: Jun 16 2008 11:41PM
Credit: Sebastian Apelt, Peter Vreugdenhil, and an anonymous researcher, working with TippingPoint and the Zero Day Initiative
Vulnerable: Nortel Networks Centrex IP Client Manager 9.0
Nortel Networks Centrex IP Client Manager 11.0
Nortel Networks Centrex IP Client Manager 10.0
Nortel Networks CallPilot 703t
Nortel Networks CallPilot 702t
Nortel Networks CallPilot 201i
Nortel Networks CallPilot 200i
Nortel Networks CallPilot 1002rp
Microsoft Internet Explorer 7.0
Microsoft Internet Explorer 6.0 SP1
Microsoft Internet Explorer 6.0
Avaya Messaging Application Server MM 3.1
Avaya Messaging Application Server MM 3.0
Avaya Messaging Application Server MM 2.0
Avaya Messaging Application Server MM 1.1
Avaya Messaging Application Server 0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus