CVE-2007-4776

Currently unrated

Key Information:

Vendor: Microsoft
Status: Visual Basic
Vendor: CVE Published:; 10 September 2007

Summary

Buffer overflow in Microsoft Visual Basic 6.0 and Enterprise Edition 6.0 SP6 allows user-assisted remote attackers to execute arbitrary code via a Visual Basic project (vbp) file containing a long Reference line, related to VBP_Open and OLE. NOTE: there are limited usage scenarios under which this would be a vulnerability.

References

http://www.osvdb.org/36936

vdb-entryx_refsource_OSVDB

http://secunia.com/advisories/26704

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/25629

vdb-entryx_refsource_BID

EPSS Score

94% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 10, 2007
Vulnerability Reserved
Sep 10, 2007

Collectors

NVD DatabaseMitre Database