CyberSec.Space Logo
CVEブラウザに戻る

CVE-2003-0347

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0350%
EPSS Percentile44.26th
Published2003年10月20日
Last Modified2026年4月16日

Vulnerability Description

Heap-based buffer overflow in VBE.DLL and VBE6.DLL of Microsoft Visual Basic for Applications (VBA) SDK 5.0 through 6.3 allows remote attackers to execute arbitrary code via a document with a long ID parameter.

Affected Platforms (CPE)

📦
Microsoft

Office

= 2000
📦
Microsoft

Office

= 2000
📦
Microsoft

Office

= 2000
📦
Microsoft

Office

= xp
📦
Microsoft

Office

= xp
📦
Microsoft

Office

= xp
📦
Microsoft

Project

= 2000
📦
Microsoft

Project

= 2002
📦
Microsoft

Visio

= 2002
📦
Microsoft

Visual Basic

= 5.0
📦
Microsoft

Visual Basic

= 6.2
📦
Microsoft

Visual Basic

= 6.2
📦
Microsoft

Visual Basic

= 6.3

References & Advisories

🔗 http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0093.html
🔗 http://marc.info/?l=bugtraq&m=106262077829157&w=2
🔗 http://secunia.com/advisories/9666
🔗 http://www.kb.cert.org/vuls/id/804780
🔗 http://www.securityfocus.com/bid/8534
🔗 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-037
🔗 http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0093.html
🔗 http://marc.info/?l=bugtraq&m=106262077829157&w=2

関連する脆弱性情報

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...

CVE-2026-121895.3

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzm...

CVE-2026-121886.3

A vulnerability was detected in Grit42 Grit up to 0.11.0. Affected by this issue is some unknown functionality of the file modules...