Vulnerability Details CVE-2007-2884
Multiple stack-based buffer overflows in Microsoft Visual Basic 6 allow user-assisted remote attackers to cause a denial of service (CPU consumption) or execute arbitrary code via a Visual Basic Project (vbp) file with a long (1) Description or (2) Company Name (VersionCompanyName) field.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.503
EPSS Ranking 97.7%
CVSS Severity
CVSS v2 Score 9.3
References
- http://osvdb.org/41052
- http://osvdb.org/41053
- http://www.securityfocus.com/bid/24128
- http://www.securityfocus.com/bid/24129
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34475
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34476
- https://www.exploit-db.com/exploits/3976
- https://www.exploit-db.com/exploits/3977
- http://osvdb.org/41052
- http://osvdb.org/41053
- http://www.securityfocus.com/bid/24128
- http://www.securityfocus.com/bid/24129
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34475
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34476
- https://www.exploit-db.com/exploits/3976
- https://www.exploit-db.com/exploits/3977
Products affected by CVE-2007-2884
-
cpe:2.3:a:microsoft:visual_basic:6.0