Vulnerability Details CVE-2007-6357
Stack-based buffer overflow in Microsoft Office Access allows remote, user-assisted attackers to execute arbitrary code via a crafted Microsoft Access Database (.mdb) file. NOTE: due to the lack of details as of 20071210, it is not clear whether this issue is the same as CVE-2007-6026 or CVE-2005-0944.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.267
EPSS Ranking 96.1%
CVSS Severity
CVSS v2 Score 5.8
References
- http://osvdb.org/44150
- http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9052538&source=rss_topic17
- http://www.informationweek.com/shared/printableArticle.jhtml?articleID=204802012
- http://www.us-cert.gov/current/index.html#microsoft_access_database_file_attachment
- http://osvdb.org/44150
- http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9052538&source=rss_topic17
- http://www.informationweek.com/shared/printableArticle.jhtml?articleID=204802012
- http://www.us-cert.gov/current/index.html#microsoft_access_database_file_attachment
Products affected by CVE-2007-6357
-
cpe:2.3:a:microsoft:access:-
-
cpe:2.3:a:microsoft:access:1.0
-
cpe:2.3:a:microsoft:access:1.1
-
cpe:2.3:a:microsoft:access:2.0
-
cpe:2.3:a:microsoft:access:2000
-
cpe:2.3:a:microsoft:access:2002
-
cpe:2.3:a:microsoft:access:2003
-
cpe:2.3:a:microsoft:access:2007
-
cpe:2.3:a:microsoft:access:2010
-
cpe:2.3:a:microsoft:access:2013
-
cpe:2.3:a:microsoft:access:2016
-
cpe:2.3:a:microsoft:access:95
-
cpe:2.3:a:microsoft:access:97