Microsoft Internet Explorer 7, when XHTML strict mode is used, allows remote attackers to execute arbitrary code via the zoom style directive in conjunction with unspecified other directives in a malformed Cascading Style Sheets (CSS) stylesheet in a crafted HTML document, aka "CSS Memory Corruption Vulnerability."
2009-02-10T22:30:00.267
2025-04-09T00:30:58.490
Deferred
CVSSv2: 9.3 (HIGH)
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.6
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | microsoft | internet_explorer | 7 | Yes |
| Operating System | microsoft | windows_server_2003 | * | No |
| Operating System | microsoft | windows_server_2003 | * | No |
| Operating System | microsoft | windows_server_2003 | * | No |
| Operating System | microsoft | windows_server_2003 | * | No |
| Operating System | microsoft | windows_server_2008 | * | No |
| Operating System | microsoft | windows_server_2008 | * | No |
| Operating System | microsoft | windows_server_2008 | * | No |
| Operating System | microsoft | windows_vista | * | No |
| Operating System | microsoft | windows_vista | * | No |
| Operating System | microsoft | windows_xp | * | No |
| Operating System | microsoft | windows_xp | * | No |
| Operating System | microsoft | windows_xp | * | No |
| Operating System | microsoft | windows_xp | * | No |