49 matches found
CVE-2003-0347
Vulnerability CVE-2003-0347 affects Microsoft Visual Basic for Applications (VBA) 5.0–6.3 via heap-based overflow in VBE.DLL and VBE6.DLL. An attacker could supply a document with a long ID parameter to cause remote code execution. Impact is remote compromise with user privileges; affected compon...
Microsoft Visual Basic for Applications buffer overflow
Buffer overflow on opening macro document...
CVE-2000-0597
Microsoft Office 2000 Excel and PowerPoint and PowerPoint 97 are marked as safe for scripting, which allows remote attackers to force Internet Explorer or some email clients to save files to arbitrary locations via the Visual Basic for Applications VBA SaveAs function, aka the "Office HTML Script...
CVE-2000-0597
Microsoft Office 2000 Excel and PowerPoint and PowerPoint 97 are marked as safe for scripting, which allows remote attackers to force Internet Explorer or some email clients to save files to arbitrary locations via the Visual Basic for Applications VBA SaveAs function, aka the "Office HTML Script...
CVE-1999-0384
The Forms 2.0 ActiveX control included with Visual Basic for Applications 5.0 can be used to read text from a user's clipboard when the user accesses documents with ActiveX content...
nt.iis.odbc.vba.txt
Date: Tue, 25 May 1999 13:59:30 -0500 From: .rain.forest.puppy. To: [email protected] Subject: Advisory: NT ODBC Remote Compromise -- Advisory: NT ODBC Remote Compromise -- By Matthew Astley RCPS http://www.fruitcake.demon.co.uk -- & Rain Forest Puppy WireTrip [email protected] -- Brief Summary...
msie-4-5.outlook+word97.txt
Date: Wed, 27 Jan 1999 14:14:39 +0000 From: Vesselin Bontchev To: [email protected] Subject: IE 4/5/Outlook + Word 97 security hole Hello folks, This is not a strictly Windows NT issue - it affects Windows 9x users too. However, it is a very important one, so I decided to post abou...
Microsoft IIS 4.0 / Microsoft JET 3.5/3.5.1 Database Engine - VBA
source: https://www.securityfocus.com/bid/286/info Microsoft's JET database engine feature allows the embedding of Visual Basic for Application in SQL string expressions and the lack of metacharacter filtering by many web applications may allow remote users to execute commands on the system...
CVE-1999-0384
The Forms 2.0 ActiveX control included with Visual Basic for Applications 5.0 can be used to read text from a user's clipboard when the user accesses documents with ActiveX content...