Stack-based Buffer Overflow in Microsoft Visual Basic 6
CVE-2007-2884

Currently unrated

Key Information:

Vendor

Microsoft
Status
Visual Basic
Vendor
CVE Published:
30 May 2007

Badges

πŸ‘Ύ Exploit Exists🟑 Public PoC🟣 EPSS 60%

What is CVE-2007-2884?

Microsoft Visual Basic 6 is susceptible to multiple stack-based buffer overflows that allow user-assisted remote attackers to execute arbitrary code or cause a denial of service through specially crafted Visual Basic Project (vbp) files. These files, containing overly long entries in the Description or Company Name fields, could lead to significant CPU consumption or unwanted operations, severely affecting system integrity.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2007-2884 - Proof of Concept

CVE-2007-2884 - Proof of Concept

References

http://osvdb.org/41053
vdb-entryx_refsource_OSVDB
https://exchange.xforce.ibmcloud.com/vulnerabilities/34475
vdb-entryx_refsource_XF
https://www.exploit-db.com/exploits/3977
exploitx_refsource_EXPLOIT-DB

EPSS Score

60% chance of being exploited in the next 30 days.

Timeline

  • 🟑

    Public PoC available

  • πŸ‘Ύ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

JSON
.