Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS) - Microsoft

Microsoft Security Advisory (906267): A COM Object (Msdds.dll) Could Cause Internet E

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Windows & DOS: Issues & Discussions Security Advisories (RSS) - Microsoft Microsoft Security Advisory (906267): A COM Object (Msdds.dll) Could Cause Internet E
# 1  
Old 12-24-2007
Microsoft Security Advisory (906267): A COM Object (Msdds.dll) Could Cause Internet E
Revision Note: Advisory updated to include additional mitigating factors. Msdds.dll file versions have also been revised: updated file version from 7.0.9446.0 to 7.0.9466.0 and added file version 7.0.9064.9143. Advisory Summary:Microsoft is investigating new public reports of a possible vulnerability in Internet Explorer. We are not aware of attacks that try to use the reported vulnerabilities or of customer impact at this time. Microsoft is aggressively investigating the public reports. The Microsoft DDS Library Shape Control (Msdds.dll) is a COM object that could, when called from a Web page displayed in Internet Explorer, cause Internet Explorer to unexpectedly exit. This condition could potentially allow remote code execution if a user visited a malicious Web site. This COM Object is not marked safe for scripting and is not intended for use in Internet explorer. Upon completion of this investigation, Microsoft will take the appropriate action to help protect our customers. This may include providing a security update through our monthly release process or providing an out-of-cycle security update, depending on customer needs.

More...
Login or Register to Ask a Question

Previous Thread | Next Thread
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

orange

ORANGE(1)							   User Commands							 ORANGE(1)

NAME

       orange - extract CAB files from self-extracting installers

DESCRIPTION

	      orange [-d DIRECTORY] [-D LEVEL] [-h] FILENAME

       -d DIRECTORY
	      Extract files to DIRECTORY

       -D LEVEL
	      Set debug log level 0 - No logging (default) 1 - Errors only 2 - Errors and warnings 3 - Everything

       -h     Show this help message

       FILENAME
	      The file to list or extract contents of

       Orange is a tool and library for squeezing out juicy installable Microsoft Cabinet Files from self-extracting installers for Microsoft Win-
       dows.  It currently supports the following kinds of installers:

	      * Early support for installers created by Installer VISE. (Orange 0.3 or

	      later)

	      * Support for some installers created by Inno Setup. (Orange 0.2 or later) * Early support for the installer used  by  TomTom  prod-
	      ucts. (Orange 0.2 or

	      later)

	      * InstallShield versions 5 and 6, using Unshield for extracting

	      InstallShield Cabinet files.

	      *  Setup	Factory  versions 5 and 6 using Dynamite for data decompression.  * Some other installer (using a DLL called inflate.dll).
	      This is used by

	      for example Macromedia Flash Player 6 for Pocket PC 2002.

	      * Microsoft Cabinets (also self-extracting) when you have Cabextract

	      installed.

	      * Zip archives (also self-extracting) when you have UnZip installed.

orange 0.3.1							     July 2004								 ORANGE(1)