http://blogs.msdn.com/jaiprakash/archive/2007/01/15/calling-variantclear-on-a-out-param-can-lead-to-security-hole.aspxThere was a mail thread going on internally where a security hole was suspected due to VarianltClear() being called inside a method on a out param. Since i am new to COM world, I asked my fellow MSFTian Paul Dempsey that how can it be possible. Here isen-USCommunityServer 2.1 SP1 (Build: 61025.2)http://blogs.msdn.com/jaiprakash/archive/2007/01/15/calling-variantclear-on-a-out-param-can-lead-to-security-hole.aspx#9525524Wed, 01 Apr 2009 10:00:34 GMT91d46819-8472-40ad-a661-2c78acb4018c:9525524pweerd<p>Hi Jaiprakash,</p> <p>I'm not sure if this is right. I had the same feeling about it and programmed my COM-object in that way. But it is leaking memory when called from VBScript. There is not much documentation about who is responsible for freeing VARIANTS in COM.</p> <p>Many people are using VARIANTs by always initializing and always cleaining them.</p> <p>My COM object declared the following method:</p> <p>HRESULT Test ([out]VARIANT *Value);</p> <p>and in them implementation I did fill it with a string, without calling VariantClear().</p> <p>VBScript code:</p> <p>dim i, obj, v</p> <p>set obj = CreateObject (&quot;myobject&quot;)</p> <p>for i=0 to 1000000</p> <p> &nbsp; obj.Test v</p> <p>next</p> <p>v was correctly filled, but it is leaking fast.</p> <p>This behaviour is different when you change the attribute from [out] into [out,retval]. After that its not leaking any more. The VBScript code is than:</p> <p>dim i, obj, v</p> <p>set obj = CreateObject (&quot;myobject&quot;)</p> <p>for i=0 to 1000000</p> <p> &nbsp;v = &nbsp;obj.Test</p> <p>next</p> <p>Regards,</p> <p>Peter vd Weerd</p>