Denial of Service Vulnerability in Microsoft Visual Database Tools
CVE-2007-2885

Currently unrated

Key Information:

Vendor: Microsoft
Status: Visual Database Tools Database Designer
Vendor: CVE Published:; 30 May 2007

What is CVE-2007-2885?

The NotSafe function within the MSVDTDatabaseDesigner7 ActiveX control, located in VDT70.DLL of Microsoft Visual Database Tools 7.0, allows remote attackers to trigger a denial of service, specifically causing Internet Explorer 6 to crash. This vulnerability occurs through the delivery of a deliberately lengthy argument, potentially leading to a disruption of service for users attempting to interact with an affected web application.

References

http://osvdb.org/38140

vdb-entryx_refsource_OSVDB

http://downloads.securityfocus.com/vulnerabilities/exploi...

x_refsource_MISC

http://www.securityfocus.com/bid/24127

vdb-entryx_refsource_BID

EPSS Score

10% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 30, 2007
Vulnerability Reserved
May 29, 2007