CVE-2007-0940
First published: Tue May 08 2007(Updated: )
Unspecified vulnerability in the Cryptographic API Component Object Model Certificates ActiveX control (CAPICOM.dll) in Microsoft CAPICOM and BizTalk Server 2004 SP1 and SP2 allows remote attackers to execute arbitrary code via unspecified vectors, aka the "CAPICOM.Certificates Vulnerability."
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft BizTalk Server | =2004-sp1 | |
| Microsoft CAPICOM | ||
| Microsoft BizTalk Server | =2004-sp2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.kb.cert.org/vuls/id/866305
- http://www.securityfocus.com/bid/23782
- http://www.securitytracker.com/id?1018016
- http://www.securitytracker.com/id?1018017
- http://secunia.com/advisories/25185
- http://www.us-cert.gov/cas/techalerts/TA07-128A.html
- http://www.osvdb.org/34397
- http://www.vupen.com/english/advisories/2007/1713
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32739
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1670
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-028
- http://www.securityfocus.com/archive/1/468871/100/200/threaded
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/event
- agent/severity
- agent/author
- agent/weakness
- agent/references
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/microsoft
- canonical/microsoft biztalk server
- version/microsoft biztalk server/2004-sp1
- canonical/microsoft capicom
- version/microsoft biztalk server/2004-sp2