Lucene search

[email protected]CVE-2008-0392

HistoryJan 23, 2008 - 3:00 a.m.

CVE-2008-0392

2008-01-2303:00:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-0392

microsoft visual basic

buffer overflows

remote code execution

nvd

8.6 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.502 Medium

EPSS

Percentile

97.5%

JSON

Multiple buffer overflows in Microsoft Visual Basic Enterprise Edition 6.0 SP6 allow user-assisted remote attackers to execute arbitrary code via a .dsr file with a long (1) ConnectionName or (2) CommandName line.

CPENameOperatorVersion
microsoft:visual_basicmicrosoft visual basiceq6.0

CPE	Name	Operator	Version
microsoft:visual_basic	microsoft visual basic	eq	6.0

References

secunia.com/advisories/28563

www.securityfocus.com/bid/27349

www.securitytracker.com/id?1019258

www.vupen.com/english/advisories/2008/0195

exchange.xforce.ibmcloud.com/vulnerabilities/39773

www.exploit-db.com/exploits/4938

8.6 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.502 Medium

EPSS

Percentile

97.5%

JSON

Related for CVE-2008-0392

prion1