This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Microsoft First view 2003-10-20
Product Visual Basic Last view 2006-08-08
Version 6.3 Type Application
Update *  
Edition sdk  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:microsoft:visual_basic

Activity : Overall

Related : CVE

  Date Alert Description
5.1 2006-08-08 CVE-2006-3649

Buffer overflow in Microsoft Visual Basic for Applications (VBA) SDK 6.0 through 6.4, as used by Microsoft Office 2000 SP3, Office XP SP3, Project 2000 SR1, Project 2002 SP1, Access 2000 Runtime SP3, Visio 2002 SP2, and Works Suite 2004 through 2006, allows user-assisted attackers to execute arbitrary code via unspecified document properties that are not verified when VBA is invoked to open documents.

10 2003-10-20 CVE-2003-0347

Heap-based buffer overflow in VBE.DLL and VBE6.DLL of Microsoft Visual Basic for Applications (VBA) SDK 5.0 through 6.3 allows remote attackers to execute arbitrary code via a document with a long ID parameter.

Open Source Vulnerability Database (OSVDB)

id Description
27849 Microsoft Visual Basic Unspecified Document Handling Overflow
12652 Microsoft Visual Basic for Applications (VBA) VBE.DLL and VBE6.DLL Long ID Ov...

Snort® IPS/IDS

Date Description
2014-01-10 Microsoft Visual Basic for Applications document properties overflow attempt
RuleID : 17286 - Type : FILE-OTHER - Revision : 14

Nessus® Vulnerability Scanner

id Description
2006-08-08 Name: Arbitrary code can be executed on the remote host through VBA.
File: smb_nt_ms06-047.nasl - Type: ACT_GATHER_INFO
2003-09-04 Name: Arbitrary code can be executed on the remote host through VBA.
File: smb_nt_ms03-037.nasl - Type: ACT_GATHER_INFO