CVE-2003-0347

Currently unrated

Key Information:

Vendor: Microsoft
Status: Visual Basic; Project; Office; Visio
Vendor: CVE Published:; 20 October 2003

Summary

Heap-based buffer overflow in VBE.DLL and VBE6.DLL of Microsoft Visual Basic for Applications (VBA) SDK 5.0 through 6.3 allows remote attackers to execute arbitrary code via a document with a long ID parameter.

References

http://www.kb.cert.org/vuls/id/804780

third-party-advisoryx_refsource_CERT-VN

http://archives.neohapsis.com/archives/vulnwatch/2003-q3/...

mailing-listx_refsource_VULNWATCH

http://secunia.com/advisories/9666

third-party-advisoryx_refsource_SECUNIA

EPSS Score

94% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 20, 2003
Vulnerability Reserved
May 28, 2003

Collectors

NVD DatabaseMitre Database