• info
• discussion
• exploit
• solution
• references

Microsoft Internet Explorer 'onreadystatechange' Corrupt Memory Remote Code Execution Vulnerability

Solution:
The vendor has released an advisory along with fixes. Please see the references for details.


Microsoft Internet Explorer 7.0

• Microsoft Cumulative Security Update for Internet Explorer 7 for Windows Server 2003 (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=a980b867-c67f -4c61-b6db-e55c2ca68dc0


• Microsoft Cumulative Security Update for Internet Explorer 7 for Windows Server 2003 64-bit Itanium Edition (K
  http://www.microsoft.com/downloads/details.aspx?FamilyID=a2d2907e-67ae -44a4-a805-8670e659ea57


• Microsoft Cumulative Security Update for Internet Explorer 7 for Windows Server 2003 x64 Edition (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=5e7d6372-9c8c -449d-88fd-afd4f92ad9e6


• Microsoft Cumulative Security Update for Internet Explorer 7 for Windows XP (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=827b735c-660b -4723-b688-3297e107153a


• Microsoft Cumulative Security Update for Internet Explorer 7 for Windows XP x64 Edition (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=e5d2c81e-ffab -4e3b-a59a-a55000597213


• Microsoft Cumulative Security Update for Internet Explorer 7 in Windows Server 2008 (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=a0e3f975-57da -43fa-ac12-3d14fd6ce939


• Microsoft Cumulative Security Update for Internet Explorer 7 in Windows Server 2008 for Itanium-based Systems
  http://www.microsoft.com/downloads/details.aspx?FamilyID=67d4c189-030d -42eb-98b9-7957ccd92592


• Microsoft Cumulative Security Update for Internet Explorer 7 in Windows Server 2008 x64 Edition (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=758edce7-2a82 -4b2e-bd71-5b7075cc4b17


• Microsoft Cumulative Security Update for Internet Explorer 7 in Windows Vista (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=e60215c3-b8b9 -4e45-9d9f-b3fb0b47cce1


• Microsoft Cumulative Security Update for Internet Explorer 7 in Windows Vista x64 Edition (KB969897)
  http://www.microsoft.com/downloads/details.aspx?FamilyID=88185088-8c2c -4bc6-89b2-87f4d4849cf7