MS.IE.CCRP.BrowseDialog.Server.DoS

description-logoDescription

It indicates a possible exploit of a DoS vulnerability in a certain ActiveX control in the Common Controls Replacement Project(CCRP) BrowseDialog Server (ccrpbds6.dll), that may allow remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long CCRP_BDc.SelectedFolder property value.

affected-products-logoAffected Products

Brad Martinez BrowseDialog ActiveX control 0

Impact logoImpact

Internet Explorer 7 crash.

recomended-action-logoRecommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)