This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Detail | |||
|---|---|---|---|
| Vendor | Microsoft | First view | 2003-10-20 |
| Product | Visual Basic | Last view | 2006-08-08 |
| Version | 6.2 | Type | Application |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:a:microsoft:visual_basic | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 5.1 | 2006-08-08 | CVE-2006-3649 | Buffer overflow in Microsoft Visual Basic for Applications (VBA) SDK 6.0 through 6.4, as used by Microsoft Office 2000 SP3, Office XP SP3, Project 2000 SR1, Project 2002 SP1, Access 2000 Runtime SP3, Visio 2002 SP2, and Works Suite 2004 through 2006, allows user-assisted attackers to execute arbitrary code via unspecified document properties that are not verified when VBA is invoked to open documents. |
| 10 | 2003-10-20 | CVE-2003-0347 | Heap-based buffer overflow in VBE.DLL and VBE6.DLL of Microsoft Visual Basic for Applications (VBA) SDK 5.0 through 6.3 allows remote attackers to execute arbitrary code via a document with a long ID parameter. |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 27849 | Microsoft Visual Basic Unspecified Document Handling Overflow |
| 12652 | Microsoft Visual Basic for Applications (VBA) VBE.DLL and VBE6.DLL Long ID Ov... |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2014-01-10 | Microsoft Visual Basic for Applications document properties overflow attempt RuleID : 17286 - Type : FILE-OTHER - Revision : 14 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2006-08-08 | Name: Arbitrary code can be executed on the remote host through VBA. File: smb_nt_ms06-047.nasl - Type: ACT_GATHER_INFO |
| 2003-09-04 | Name: Arbitrary code can be executed on the remote host through VBA. File: smb_nt_ms03-037.nasl - Type: ACT_GATHER_INFO |
