Microsoft Visual Basic Enterprise 6.0 SP6 - Code Execution

Microsoft Visual Basic Enterprise 6.0 SP6 - Code Execution usage: vbexploit.py FileName.vbp import sys print "--------------------------------------------------------------------------" print " PoC2 Microsoft Visual Basic Enterprise Edition 6.0 SP6 Code Execution " print " author: shinnai" print ...

Microsoft Visual Basic Enterprise Edition 6.0 SP6 Code Execution Exploit

No description provided by source. usage: vbexploit.py FileName.vbp import sys print "--------------------------------------------------------------------------" print " PoC2 Microsoft Visual Basic Enterprise Edition 6.0 SP6 Code Execution " print " author: shinnai"...

Microsoft Visual Basic 6.0 VBP_Open函数缓冲区溢出漏洞

BUGTRAQ ID: 25629 Visual Basic是用来创建高性能的企业应用程序及基于Web的应用程序的工具。 如果用户受骗使用Visual Basic的VBPOpen函数打开了恶意的.VBP文件或Visual Basic项目的话，就可能触发缓冲区溢出，导致执行任意代码。 Microsoft Visual Basic 6.0 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.microsoft.com/technet/security/ !/usr/bin/perl ' ++ Microsoft Visual...

CVE-2007-4776

Buffer overflow in Microsoft Visual Basic 6.0 and Enterprise Edition 6.0 SP6 allows user-assisted remote attackers to execute arbitrary code via a Visual Basic project vbp file containing a long Reference line, related to VBPOpen and OLE. NOTE: there are limited usage scenarios under which this...

Buffer overflow

Buffer overflow in Microsoft Visual Basic 6.0 and Enterprise Edition 6.0 SP6 allows user-assisted remote attackers to execute arbitrary code via a Visual Basic project vbp file containing a long Reference line, related to VBPOpen and OLE. NOTE: there are limited usage scenarios under which this...

CVE-2007-4776

Buffer overflow in Microsoft Visual Basic 6.0 and Enterprise Edition 6.0 SP6 allows user-assisted remote attackers to execute arbitrary code via a Visual Basic project vbp file containing a long Reference line, related to VBPOpen and OLE. NOTE: there are limited usage scenarios under which this...

CVE-2007-4776

CVE-2007-4776 is a buffer overflow in Microsoft Visual Basic 6.0/Enterprise Edition 6.0 SP6 triggered when opening a crafted Visual Basic Project (.VBP) file that contains a long Reference line. The underlying issue involves VBP_Open and OLE handling, allowing a user-assisted remote attacker to e...

Microsoft Visual Basic 6.0 VBP_Open OLE Local CodeExec Exploit

No description provided by source. !/usr/bin/perl ' ++ Microsoft Visual Basic 6.0 Code Execution 0-Day ++ ' ++++++++++++++++++++++++++++++++++++++++++++++++++++++ '++ Author: Koshi + '++ Email: heykoshi at gmail dot com +...

msvb-codeexec.txt

!/usr/bin/perl ' ++ Microsoft Visual Basic 6.0 Code Execution 0-Day ++ ' ++++++++++++++++++++++++++++++++++++++++++++++++++++++ '++ Author: Koshi + '++ Email: heykoshi at gmail dot com + '++ Application: Microsoft Visual Basic 6.0 + '++ + '++ Tested on Microsoft Windows XP Home Edition SP2 + '++...

Microsoft Visual Basic 6.0 VBP_Open OLE Local CodeExec Exploit

Exploit for unknown platform in category local exploits ============================================================== Microsoft Visual Basic 6.0 VBPOpen OLE Local CodeExec Exploit ============================================================== !/usr/bin/perl ' ++ Microsoft Visual Basic 6.0 Code...

Microsoft Visual Basic 6.0 - VBP_Open OLE Local CodeExec

Microsoft Visual Basic 6.0 - VBPOpen OLE Local CodeExec !/usr/bin/perl ' ++ Microsoft Visual Basic 6.0 Code Execution 0-Day ++ ' ++++++++++++++++++++++++++++++++++++++++++++++++++++++ '++ Author: Koshi + '++ Email: heykoshi at gmail dot com + '++ Application: Microsoft Visual Basic 6.0 + '++ + '+...

Microsoft Visual Basic 6.0 - VBP_Open OLE Local CodeExec

!/usr/bin/perl ' ++ Microsoft Visual Basic 6.0 Code Execution 0-Day ++ ' ++++++++++++++++++++++++++++++++++++++++++++++++++++++ '++ Author: Koshi + '++ Email: heykoshi at gmail dot com + '++ Application: Microsoft Visual Basic 6.0 + '++ + '++ Tested on Microsoft Windows XP Home Edition SP2 + '++...

Microsoft Internet Explorer multiple security vulnerabilities

Memory corruption on ActiveX parsing, unsafe Visual Basic ActiveX execution, Visual Basic ActiveX memory corruption...

[Full-disclosure] ZDI-07-048: Microsoft Internet Explorer substringData() Heap Overflow Vulnerability

ZDI-07-048: Microsoft Internet Explorer substringData Heap Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-048.html August 14, 2007 -- CVE ID: CVE-2007-2223 CVE-2007-2224 -- Affected Vendor: Microsoft -- Affected Products: Windows 2000 Windows XP Windows Server 2003...

[Full-disclosure] ZDI-07-048: Microsoft Internet Explorer substringData() Heap Overflow Vulnerability

ZDI-07-048: Microsoft Internet Explorer substringData Heap Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-07-048.html August 14, 2007 -- CVE ID: CVE-2007-2223 CVE-2007-2224 -- Affected Vendor: Microsoft -- Affected Products: Windows 2000 Windows XP Windows Server 2003...

Microsoft Security Bulletin MS07-043 - Critical Vulnerability in OLE Automation Could Allow Remote Code Execution (921503)

Microsoft Security Bulletin MS07-043 - Critical Vulnerability in OLE Automation Could Allow Remote Code Execution 921503 Published: August 14, 2007 Version: 1.0 General Information Executive Summary This critical security update resolves a privately reported vulnerability. This vulnerability coul...

Microsoft OLE Automation SubstringData Function Integer Overflow Vulnerability

Description Microsoft OLE Automation is prone to an integer-overflow vulnerability. this issue occurs because the application fails to ensure that integer values are not overrun. Successfully exploiting this issue allows remote attackers to corrupt heap memory and execute arbitrary in the context...

CVE-2007-2884

Multiple stack-based buffer overflows in Microsoft Visual Basic 6 allow user-assisted remote attackers to cause a denial of service CPU consumption or execute arbitrary code via a Visual Basic Project vbp file with a long 1 Description or 2 Company Name VersionCompanyName field...

Stack overflow

Multiple stack-based buffer overflows in Microsoft Visual Basic 6 allow user-assisted remote attackers to cause a denial of service CPU consumption or execute arbitrary code via a Visual Basic Project vbp file with a long 1 Description or 2 Company Name VersionCompanyName field...

CVE-2007-2884

The CVE-2007-2884 issue affects Microsoft Visual Basic 6. It involves multiple stack-based buffer overflows triggered by a Visual Basic Project (vbp) file containing unusually long fields in Description or VersionCompanyName, enabling user-assisted remote attackers to cause CPU exhaustion (DoS) o...