CVE-2008-0392

Currently unrated

Key Information:

Vendor: Microsoft
Status: Visual Basic
Vendor: CVE Published:; 23 January 2008

Summary

Multiple buffer overflows in Microsoft Visual Basic Enterprise Edition 6.0 SP6 allow user-assisted remote attackers to execute arbitrary code via a .dsr file with a long (1) ConnectionName or (2) CommandName line.

References

http://secunia.com/advisories/28563

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2008/0195

vdb-entryx_refsource_VUPEN

https://exchange.xforce.ibmcloud.com/vulnerabilities/39773

vdb-entryx_refsource_XF

EPSS Score

73% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 23, 2008
Vulnerability Reserved
Jan 22, 2008

Collectors

NVD DatabaseMitre Database