Lucene search
K

3 matches found

seebug.org
seebug.org
added 2008/02/20 12:0 a.m.57 views

Microsoft Windows OLE自动化堆溢出漏洞(MS08-008)

BUGTRAQ ID: 27661 CVECAN ID: CVE-2007-0065 Microsoft Windows是微软发布的非常流行的操作系统。 对象链接和嵌入(OLE)自动化处理特制脚本请求的方式存在堆溢出漏洞,如果用户受骗访问了恶意站点的话,就可能触发这个溢出,导致以登录用户的权限对系统进行更改。如果用户以管理权限登录的话,攻击者就可以完全控制受影响的系统。 Microsoft Office 2004 for Mac Microsoft Visual Basic 6.0 SP6 Microsoft Windows XP SP2 Microsoft Windows Vista...

10CVSS6.9AI score0.43237EPSS
Exploits1
CVE
CVE
added 2008/02/12 10:0 p.m.70 views

CVE-2007-0065

CVE-2007-0065 is a remote code execution vulnerability described as an OLE Heap Overrun in Object Linking and Embedding (OLE) Automation. The flaw is a heap-based buffer overflow triggered by specially crafted script requests, affecting Windows 2000 SP4, Windows XP SP2, Windows Server 2003 SP1/SP...

10CVSS7.7AI score0.43237EPSS
Exploits1References8Affected Software2
Tenable Nessus
Tenable Nessus
added 2008/02/12 12:0 a.m.35 views

MS08-008: Vulnerability in OLE Automation Could Allow Remote Code Execution (947890)

The remote host contains a version of Microsoft Windows that has a vulnerability in the OLE Automation component that can be abused by an attacker to execute arbitrary code on the remote host. An attacker may be able to execute arbitrary code on the remote host by constructing a malicious script...

10CVSS6.2AI score0.43237EPSS
Exploits1References2
Rows per page
Query Builder