Microsoft Visual Basic VBE6.DLL Stack Memory Corruption (MS10-031) - Ver2 (CVE-2010-0815)

Microsoft Visual Basic VBA is a technology for developing client desktop packaged applications and integrating them with existing data and systems. Microsoft Office products include VBA and make use of VBA to perform certain functions. A remote code execution vulnerability has been reported in th...

MS12-046: Vulnerability in Visual Basic for Applications Could Allow Remote Code Execution (2707960)

The version of Visual Basic for Applications installed on the remote host is affected by an insecure library loading vulnerability. A remote attacker could exploit this flaw by tricking a user into opening a legitimate Microsoft Office file located in the same directory as a maliciously crafted...

CVE-2012-1854

Untrusted search path vulnerability in VBE6.dll in Microsoft Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Microsoft Visual Basic for Applications VBA; and Summit Microsoft Visual Basic for Applications SDK allows local users to gain privileges via a Trojan horse DLL in the current...

CVE-2012-1854

Untrusted search path vulnerability in VBE6.dll in Microsoft Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Microsoft Visual Basic for Applications VBA; and Summit Microsoft Visual Basic for Applications SDK allows local users to gain privileges via a Trojan horse DLL in the current...

CVE-2012-1854

The CVE-2012-1854 entry describes an insecure library loading vulnerability in Microsoft Visual Basic for Applications (VBA) via VBE6.dll. Affected products include Microsoft Office 2003 SP3, 2007 SP2/SP3, and 2010 Gold/SP1, with VBA and Summit VBA SDK also implicated. The root cause is untrusted...

Microsoft Visual Basic Remote Code Execution Vulnerability (978213)

This host is missing a critical security update according to Microsoft Bulletin MS10-031. OpenVAS Vulnerability Test $Id: secpodms10-031.nasl 6413 2017-06-23 09:16:58Z cfischer $ Microsoft Visual Basic Remote Code Execution Vulnerability 978213 Authors: Antu Sanadi Copyright: Copyright c 2010...

CVE-2010-0815

VBE6.DLL in Microsoft Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Visual Basic for Applications VBA, and VBA SDK 6.3 through 6.5 does not properly search for ActiveX controls that are embedded in documents, which allows remote attackers to execute arbitrary code via ...

Memory corruption

VBE6.DLL in Microsoft Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Visual Basic for Applications VBA, and VBA SDK 6.3 through 6.5 does not properly search for ActiveX controls that are embedded in documents, which allows remote attackers to execute arbitrary code via ...

CVE-2010-0815

CVE-2010-0815 (VBE6.DLL Stack Memory Corruption) is a remote code execution vulnerability in Microsoft Visual Basic for Applications (VBA) related to how VBA searches for ActiveX controls embedded in documents. The issue affects Office XP SP3, Office 2003 SP3, 2007 Office System SP1/SP2, VBA, and...

Microsoft Visual Basic VBE6.DLL Stack Memory Corruption (MS10-031; CVE-2010-0815)

Microsoft Visual Basic VBA is a technology for developing client desktop packaged applications and integrating them with existing data and systems. Microsoft Office products include VBA and make use of VBA to perform certain functions. A remote code execution vulnerability has been reported in th...

Visual Basic (vbe6.dll) Local Stack Overflow PoC / DoS

No description provided by source. Stack overflow in vbe6.dll, used by all versions of MS Office The overflow occurs in Visual Basic for Application. ...

vbe6-dos.txt

Stack overflow in vbe6.dll, used by all versions of MS Office The overflow occurs in Visual Basic for Application. Creating a property with a long name about 247 chars results in a stack overflow in vbe6.dll which overwrites with a null byte the first byte of the return address. Probably impossib...

Visual Basic - vbe6.dll Local Stack Overflow (PoC) Denial of Service

Visual Basic - vbe6.dll Local Stack Overflow PoC Denial of Service Stack overflow in vbe6.dll, used by all versions of MS Office The overflow occurs in Visual Basic for Application. Creating a property with a long name about 247 chars results in a stack overflow in vbe6.dll which overwrites with ...

Visual Basic (vbe6.dll) Local Stack Overflow PoC / DoS

Exploit for unknown platform in category dos / poc ====================================================== Visual Basic vbe6.dll Local Stack Overflow PoC / DoS ====================================================== Stack overflow in vbe6.dll, used by all versions of MS Office The overflow occurs i...

Visual Basic - 'vbe6.dll' Local Stack Overflow (PoC) / Denial of Service

Stack overflow in vbe6.dll, used by all versions of MS Office The overflow occurs in Visual Basic for Application. Creating a property with a long name about 247 chars results in a stack overflow in vbe6.dll which overwrites with a null byte the first byte of the return address. Probably impossib...

Microsoft Office执行跳转内存破坏漏洞（MS08-013）

BUGTRAQ ID: 27738 CVECAN ID: CVE-2008-0103 Microsoft Office是非常流行的办公软件套件。 Microsoft Office在处理注入了畸形对象的Office文件时存在内存破坏漏洞，如果用户受骗打开了特制的Office文件的话，就可能触发这个漏洞，导致执行任意指令。 Microsoft Office XP SP3 Microsoft Office 2004 for Mac Microsoft Office 2003 Service Pack 2 Microsoft Office 2000 Service Pack 3 临时解决方法：...

CVE-2003-0347

Heap-based buffer overflow in VBE.DLL and VBE6.DLL of Microsoft Visual Basic for Applications VBA SDK 5.0 through 6.3 allows remote attackers to execute arbitrary code via a document with a long ID parameter...

CVE-2003-0347

Vulnerability CVE-2003-0347 affects Microsoft Visual Basic for Applications (VBA) 5.0–6.3 via heap-based overflow in VBE.DLL and VBE6.DLL. An attacker could supply a document with a long ID parameter to cause remote code execution. Impact is remote compromise with user privileges; affected compon...