Title: Microsoft IE ADODB.Recordset SysFreeString Invalid Length
Jul 29, 2006
Mar 26, 2007
Feb 13, 2007
Internet Explorer contains a flaw that may allow a local denial of service. The issue is triggered when opening a web page containing a script which calls the 'ADODB.Recordset' ActiveX object's 'NextRecordset' method several times with a long argument. This will result in an invalid memory access causing the browser to crash.
Remote / Network Access
Denial of Service,
Loss of Availability
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.