79 matches found
CVE-2008-2959
Buffer overflow in a certain ActiveX control vb6skit.dll in Microsoft Visual Basic Enterprise Edition 6.0 SP6 might allow remote attackers to execute arbitrary code via a long lpstrLinkPath argument to the fCreateShellLink function...
CVE-2008-2959
CVE-2008-2959 affects Microsoft Visual Basic 6 Enterprise Edition 6.0 SP6 via the vb6skit.dll ActiveX control. The buffer overflow occurs in fCreateShellLink when a long lpstrLinkPath is passed, allowing remote arbitrary-code execution. Connected advisories corroborate a remote-execution risk and...
Microsoft VB企业版6 'vb6skit.dll'远程缓冲区溢出漏洞
BUGTRAQ ID: 29792 CNCAN ID:CNCAN-2008062303 Microsoft Visual Basic Enterprise Edition 6是一款流行的VB语言开发系统。 Microsoft Visual Basic Enterprise Edition 6 vb6skit.dll存在缓冲区溢出,远程攻击者可以利用漏洞以应用程序权限执行任意代码。 vb6skit.dll模块包含API功能,用于建立快捷链接shell链接,由于对第三个参数数据lpstrLinkPath长度缺少正确边界检查,构建恶意WEB页,诱使用户访问,可导致以应用程序权限执行任意代码。...
Microsoft Windows OLE自动化堆溢出漏洞(MS08-008)
BUGTRAQ ID: 27661 CVECAN ID: CVE-2007-0065 Microsoft Windows是微软发布的非常流行的操作系统。 对象链接和嵌入(OLE)自动化处理特制脚本请求的方式存在堆溢出漏洞,如果用户受骗访问了恶意站点的话,就可能触发这个溢出,导致以登录用户的权限对系统进行更改。如果用户以管理权限登录的话,攻击者就可以完全控制受影响的系统。 Microsoft Office 2004 for Mac Microsoft Visual Basic 6.0 SP6 Microsoft Windows XP SP2 Microsoft Windows Vista...
Buffer overflow
Multiple buffer overflows in Microsoft Visual Basic Enterprise Edition 6.0 SP6 allow user-assisted remote attackers to execute arbitrary code via a .dsr file with a long 1 ConnectionName or 2 CommandName line...
CVE-2008-0392
Multiple buffer overflows in Microsoft Visual Basic Enterprise Edition 6.0 SP6 allow user-assisted remote attackers to execute arbitrary code via a .dsr file with a long 1 ConnectionName or 2 CommandName line...
CVE-2008-0392
CVE-2008-0392 : Multiple buffer overflows in Microsoft Visual Basic Enterprise Edition 6.0 SP6 allow user-assisted remote attackers to execute arbitrary code via a .dsr file containing a long (1) ConnectionName or (2) CommandName line. The connected documents confirm the affected product/version ...
MS Visual Basic Enterprise Ed. 6 SP6 .dsr File Handling BOF Exploit
No description provided by source. usage: exploit.py FileName import sys print "------------------------------------------------------------------------" print ' Microsoft Visual InterDev 6.0 SP6 ".sln" files Local Buffer Overflow' print " author: shinnai" print " mail: shinnaiatautisticidotorg"...
Microsoft Visual Studio PDWizard.ocx ActiveX Control Code Execution (CVE-2007-4891)
Microsoft Visual Studio is a software development product for computer programmers. It centers on an integrated development environment which lets programmers create standalone applications, web sites, web applications, and web services.The vulnerability is due to an error in the Microsoft Visual...
Microsoft Visual Basic VBP file buffer overflow
Added: 10/05/2007 CVE: CVE-2007-4776 BID: 25629 OSVDB: 36936 Background Microsoft Visual Basic is a development tool for building Windows applications. Problem A buffer overflow vulnerability in Microsoft Visual Basic allows command execution when a user opens a specially crafted Visual Basic...
Microsoft Visual Basic VBP file buffer overflow
Added: 10/05/2007 CVE: CVE-2007-4776 BID: 25629 OSVDB: 36936 Background Microsoft Visual Basic is a development tool for building Windows applications. Problem A buffer overflow vulnerability in Microsoft Visual Basic allows command execution when a user opens a specially crafted Visual Basic...
Microsoft Visual Basic VBP file buffer overflow
Added: 10/05/2007 CVE: CVE-2007-4776 BID: 25629 OSVDB: 36936 Background Microsoft Visual Basic is a development tool for building Windows applications. Problem A buffer overflow vulnerability in Microsoft Visual Basic allows command execution when a user opens a specially crafted Visual Basic...
Microsoft Visual Basic VBP file buffer overflow
Added: 10/05/2007 CVE: CVE-2007-4776 BID: 25629 OSVDB: 36936 Background Microsoft Visual Basic is a development tool for building Windows applications. Problem A buffer overflow vulnerability in Microsoft Visual Basic allows command execution when a user opens a specially crafted Visual Basic...
Microsoft Visual Basic 6.0 VBP_Open函数缓冲区溢出漏洞
BUGTRAQ ID: 25629 Visual Basic是用来创建高性能的企业应用程序及基于Web的应用程序的工具。 如果用户受骗使用Visual Basic的VBPOpen函数打开了恶意的.VBP文件或Visual Basic项目的话,就可能触发缓冲区溢出,导致执行任意代码。 Microsoft Visual Basic 6.0 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.microsoft.com/technet/security/ !/usr/bin/perl ' ++ Microsoft Visual...
Buffer overflow
Buffer overflow in Microsoft Visual Basic 6.0 and Enterprise Edition 6.0 SP6 allows user-assisted remote attackers to execute arbitrary code via a Visual Basic project vbp file containing a long Reference line, related to VBPOpen and OLE. NOTE: there are limited usage scenarios under which this...
CVE-2007-4776
Buffer overflow in Microsoft Visual Basic 6.0 and Enterprise Edition 6.0 SP6 allows user-assisted remote attackers to execute arbitrary code via a Visual Basic project vbp file containing a long Reference line, related to VBPOpen and OLE. NOTE: there are limited usage scenarios under which this...
Microsoft Visual Basic 6.0 VBP_Open OLE Local CodeExec Exploit
No description provided by source. !/usr/bin/perl ' ++ Microsoft Visual Basic 6.0 Code Execution 0-Day ++ ' ++++++++++++++++++++++++++++++++++++++++++++++++++++++ '++ Author: Koshi + '++ Email: heykoshi at gmail dot com +...
Microsoft Visual Basic 6.0 VBP_Open OLE Local CodeExec Exploit
Exploit for unknown platform in category local exploits ============================================================== Microsoft Visual Basic 6.0 VBPOpen OLE Local CodeExec Exploit ============================================================== !/usr/bin/perl ' ++ Microsoft Visual Basic 6.0 Code...
Microsoft Visual Basic 6.0 - VBP_Open OLE Local CodeExec
!/usr/bin/perl ' ++ Microsoft Visual Basic 6.0 Code Execution 0-Day ++ ' ++++++++++++++++++++++++++++++++++++++++++++++++++++++ '++ Author: Koshi + '++ Email: heykoshi at gmail dot com + '++ Application: Microsoft Visual Basic 6.0 + '++ + '++ Tested on Microsoft Windows XP Home Edition SP2 + '++...
Stack overflow
Multiple stack-based buffer overflows in Microsoft Visual Basic 6 allow user-assisted remote attackers to cause a denial of service CPU consumption or execute arbitrary code via a Visual Basic Project vbp file with a long 1 Description or 2 Company Name VersionCompanyName field...