CyberSec.Space Logo
Back to CVE Browser

CVE-2007-2884

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.1860%
EPSS Percentile11.98th
PublishedMay 30, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Multiple stack-based buffer overflows in Microsoft Visual Basic 6 allow user-assisted remote attackers to cause a denial of service (CPU consumption) or execute arbitrary code via a Visual Basic Project (vbp) file with a long (1) Description or (2) Company Name (VersionCompanyName) field.

Affected Platforms (CPE)

πŸ“¦
Microsoft

Visual Basic

= 6.0

References & Advisories

πŸ”— http://osvdb.org/41052
πŸ”— http://osvdb.org/41053
πŸ”— http://www.securityfocus.com/bid/24128
πŸ”— http://www.securityfocus.com/bid/24129
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/34475
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/34476
πŸ”— https://www.exploit-db.com/exploits/3976
πŸ”— https://www.exploit-db.com/exploits/3977

Related Vulnerabilities

CVE-2006-473210.0

Unspecified vulnerability in Microsoft Visual Basic (VB) 6 has an unknown impact ("overflow") via a project that contains a certai...

CVE-2000-078810.0

The Mail Merge tool in Microsoft Word does not prompt the user before executing Visual Basic (VBA) scripts in an Access database, ...

CVE-2003-034710.0

Heap-based buffer overflow in VBE.DLL and VBE6.DLL of Microsoft Visual Basic for Applications (VBA) SDK 5.0 through 6.3 allows rem...

CVE-2007-006510.0

Heap-based buffer overflow in Object Linking and Embedding (OLE) Automation in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1...