• info
• discussion
• exploit
• solution
• references

Microsoft Internet Explorer CHTSKDIC.DLL Arbitrary Code Execution Vulnerability

Solution:
Microsoft has released security advisory MS07-027 to address this issue in supported versions of affected applications.


Microsoft Internet Explorer 7.0 beta1

• Microsoft Cumulative Update for Internet Explorer 7 for Windows Server 2003 (KB931768)
  Windows Internet Explorer 7 for Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2
  http://www.microsoft.com/downloads/details.aspx?familyid=0F173D60-6FD0 -4C92-BB2A-A7A78707E35F&displaylang=en


• Microsoft Cumulative Update for Internet Explorer 7 for Windows Server 2003 64-bit Itanium Edition (KB931768)
  Windows Internet Explorer 7 for Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems
  http://www.microsoft.com/downloads/details.aspx?familyid=1944BCFA-B0BC -4BD5-9089-A618EA43EA49&displaylang=en


• Microsoft Cumulative Update for Internet Explorer 7 for Windows Server 2003 x64 Edition (KB931768)
  ows Internet Explorer 7 for Windows Server 2003 x64 Edition Service Pack 1 and Windows Server 2003 x64 Edition Service Pack 2
  http://www.microsoft.com/downloads/details.aspx?familyid=404A48A2-5765 -4AFA-94BF-E97212AA14EF&displaylang=en


• Microsoft Cumulative Update for Internet Explorer 7 for Windows XP Service Pack 2 (KB931768)
  Windows Internet Explorer 7 for Windows XP Service Pack 2
  http://www.microsoft.com/downloads/details.aspx?familyid=7A778D93-9D85 -4217-8CC0-5C494D954CA0&displaylang=en


• Microsoft Cumulative Update for Internet Explorer 7 for Windows XP x64 Edition (KB931768)
  Windows Internet Explorer 7 for Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2
  http://www.microsoft.com/downloads/details.aspx?familyid=29938ED4-F8BB -4793-897C-966BA7F4830C&displaylang=en


• Microsoft Cumulative Update for Internet Explorer 7 in Windows Vista (KB931768)
  Windows Internet Explorer 7 in Windows Vista
  http://www.microsoft.com/downloads/details.aspx?familyid=0C65FAD3-BAAE -46C4-B453-84CF28B15F50&displaylang=en


• Microsoft Cumulative Update for Internet Explorer 7 in Windows Vista x64 Edition (KB931768)
  Windows Internet Explorer 7 in Windows Vista x64 Edition
  http://www.microsoft.com/downloads/details.aspx?familyid=74AFEA3D-79DF -4B64-BF30-B8E5C55CAB2B&displaylang=en

Microsoft Internet Explorer 6.0 SP1

• Microsoft Cumulative Update for Internet Explorer 6 SP1 (KB931768)
  Microsoft Internet Explorer 6 Service Pack 1 when installed on Windows 2000 Service Pack 4
  http://www.microsoft.com/downloads/details.aspx?familyid=03FC8E0C-DEC5 -48D1-9A34-3B639F185F7D&displaylang=en

Microsoft Internet Explorer 6.0 SP2 - do not use

• Microsoft Cumulative Update for Internet Explorer for Windows Server 2003 (KB931768)
  Microsoft Internet Explorer 6 for Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2
  http://www.microsoft.com/downloads/details.aspx?familyid=D249089D-BB8E -4B86-AB8E-18C52844ACB2&displaylang=en


• Microsoft Cumulative Update for Internet Explorer for Windows Server 2003 64-bit Itanium Edition (KB931768)
  Microsoft Internet Explorer 6 for Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems
  http://www.microsoft.com/downloads/details.aspx?familyid=D52C0AFD-CC3A -4A5C-B91B-E006D497BC26&displaylang=en


• Microsoft Cumulative Update for Internet Explorer for Windows Server 2003 x64 Edition (KB931768)
  Microsoft Internet Explorer 6 for Windows Server 2003 x64 Edition Service Pack 1 and Windows Server 2003 x64 Edition Service Pack 2
  http://www.microsoft.com/downloads/details.aspx?familyid=94B83BDD-2BD1 -43E4-BABF-68135D253293&displaylang=en


• Microsoft Cumulative Update for Internet Explorer for Windows XP Service Pack 2 (KB931768)
  Microsoft Internet Explorer 6 for Windows XP Service Pack 2
  http://www.microsoft.com/downloads/details.aspx?familyid=EFC6BE04-0D6B -4639-8485-DA1525F6BC52&displaylang=en


• Microsoft Cumulative Update for Internet Explorer for Windows XP x64 Edition (KB931768)
  Microsoft Internet Explorer 6 for Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2
  http://www.microsoft.com/downloads/details.aspx?familyid=A077BE20-C379 -4386-B478-80197A4A4ABC&displaylang=en

Microsoft Internet Explorer 5.0.1 SP4

• Microsoft Cumulative Update for Internet Explorer 5.01 Service Pack 4 (KB931768)
  http://www.microsoft.com/downloads/details.aspx?familyid=67AE3381-16B2 -4B34-B95C-69EE7D58B357&displaylang=en