cbcvebase.
CVE-2007-1347
published 2007-03-08

CVE-2007-1347: Microsoft Windows Explorer on Windows 2000 SP4 FR and XP SP2 FR, and possibly other versions and platforms, allows remote attackers to cause a denial of…

PriorityP431high7.1CVSS 2.0
AVNACMAuNCNINAC
EXPLOIT
EPSS
31.59%
98.1th percentile
Microsoft Windows Explorer on Windows 2000 SP4 FR and XP SP2 FR, and possibly other versions and platforms, allows remote attackers to cause a denial of service (memory corruption and crash) via an Office file with crafted document summary information, which causes an error in Ole32.dll.

Detection & IOCsextracted from sources · hover to see the quote

urlhttps://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/3419.tar
filename03062007-Explorer_Crasher.tar
  • The vulnerability is triggered via crafted Office document summary information parsed by Ole32.dll; hunt for .doc files with anomalous data at file offsets 0x4460 and 0x4519.
  • ·Exploit was confirmed only on Windows 2000 SP4 FR and Windows XP SP2 FR (French locale); behaviour on other language versions or service pack levels is unconfirmed.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.