Technorati
Digg
Delicious
Reddit
StumbleUpon
Facebook
Yahoo
Twitter
Faves
Newsvine
Severity: High
This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.Description
This signature detects attempt to exploit a vulnerability in Microsoft MSN "sapi.dll" ActiveX control.Additional Information
A remote code execution vulnerability exists in the Speech Components sapi.dll. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. The user must have the Speech Recognition feature in Windows Vista enabled. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged on user.This control was never intended to be instantiated in Internet Explorer.
To view this vulnerability as a standard entry in the Common Vulnerabilities and Exposures list, see CVE-2007-0675.
Affected
- Microsoft Internet Explorer