Published: 20/10/2003 Updated: 12/10/2018

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Heap-based buffer overflow in VBE.DLL and VBE6.DLL of Microsoft Visual Basic for Applications (VBA) SDK 5.0 up to and including 6.3 allows remote malicious users to execute arbitrary code via a document with a long ID parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft office 2000
microsoft office xp
microsoft visual basic 6.2
microsoft visio 2002
microsoft visual basic 5.0
microsoft project 2000
microsoft project 2002
microsoft visual basic 6.3

source: wwwsecurityfocuscom/bid/8534/info A vulnerability has been discovered in Microsoft Visual Basic for Applications The vulnerability occurs because the software fails to perform sufficient boundary checks when parsing specific properties of malformed documents As a result, a malformed document may trigger a buffer overrun within t ...

NVD-CWE-Other http://www.securityfocus.com/bid/8534 http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0093.html http://www.kb.cert.org/vuls/id/804780 http://secunia.com/advisories/9666 http://marc.info/?l=bugtraq&m=106262077829157&w=2 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-037 https://nvd.nist.gov https://www.exploit-db.com/exploits/23094/https://www.kb.cert.org/vuls/id/804780

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2003-0347

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect