• info
• discussion
• exploit
• solution
• references

Microsoft XML Core Service XMLHTTP ActiveX Control Remote Code Execution Vulnerability

Solution:
Microsoft has released security advisory MS06-071 addressing this issue in supported versions of affected applications. Please see the references for more information.


Microsoft XML Core Services 6.0

• Microsoft Vulnerabilities in Microsoft XML Core Services 6.0 Could Allow Remote Code Execution (927977)
  http://www.microsoft.com/downloads/details.aspx?familyid=9AE7F4E9-8228 -4098-AF71-49C35684C17E&displaylang=en

Microsoft XML Core Services 4.0

• Microsoft Vulnerabilities in Microsoft XML Core Services 4.0 Could Allow Remote Code Execution (927978)
  http://www.microsoft.com/downloads/details.aspx?familyid=24B7D141-6CDF -4FC4-A91B-6F18FE6921D4&displaylang=en