CVSS: 9.3EPSS: 53%CPEs: 1EXPL: 2CVE-2008-0392 – Microsoft Visual Basic Enterprise 6 SP6 - '.dsr' File Handling Buffer Overflow
https://notcve.org/view.php?id=CVE-2008-0392
23 Jan 2008 — Multiple buffer overflows in Microsoft Visual Basic Enterprise Edition 6.0 SP6 allow user-assisted remote attackers to execute arbitrary code via a .dsr file with a long (1) ConnectionName or (2) CommandName line. Múltiples desbordamientos de búfer en Microsoft Visual Basic Enterprise Edition 6.0 SP6 permite a atacantes remotos con la intervención del usuario ejecutar código de su elección a través del código de un archivo .dsr con una línea de longitud (1) ConnectionName o (2) CommandName. • https://www.exploit-db.com/exploits/4938 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 81%CPEs: 2EXPL: 3CVE-2007-4776 – Microsoft Visual Basic - '.VBP' Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-4776
10 Sep 2007 — Buffer overflow in Microsoft Visual Basic 6.0 and Enterprise Edition 6.0 SP6 allows user-assisted remote attackers to execute arbitrary code via a Visual Basic project (vbp) file containing a long Reference line, related to VBP_Open and OLE. NOTE: there are limited usage scenarios under which this would be a vulnerability. Desbordamiento de búfer en Microsoft Visual Basic versión 6.0 y Enterprise Edition versión 6.0 SP6, permite a atacantes remotos asistidos por el usuario ejecutar código arbitrario por med... • https://www.exploit-db.com/exploits/16680 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 63%CPEs: 6EXPL: 0CVE-2007-2224
https://notcve.org/view.php?id=CVE-2007-2224
14 Aug 2007 — Object linking and embedding (OLE) Automation, as used in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Office 2004 for Mac, and Visual Basic 6.0 allows remote attackers to execute arbitrary code via the substringData method on a TextNode object, which causes an integer overflow that leads to a buffer overflow. En Object linking and embedding (OLE) Automation, tal como se usa en Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 y SP2, Office 2004 para Mac y Visual Basic versión 6.0 permite ... • http://secunia.com/advisories/26449 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-189: Numeric Errors •
CVSS: 9.3EPSS: 56%CPEs: 1EXPL: 4CVE-2007-2884 – Microsoft Visual Basic 6.0 Project - Company Name Stack Overflow (PoC)
https://notcve.org/view.php?id=CVE-2007-2884
30 May 2007 — Multiple stack-based buffer overflows in Microsoft Visual Basic 6 allow user-assisted remote attackers to cause a denial of service (CPU consumption) or execute arbitrary code via a Visual Basic Project (vbp) file with a long (1) Description or (2) Company Name (VersionCompanyName) field. Múltiples desbordamientos de búfer en Microsoft Visual Basic 6 permite a atacantes remotos cno la intervención del usuario provocar una denegación de servicio (agotamiento de CPU) o ejecutar código de su elección mediante ... • https://www.exploit-db.com/exploits/3976 • CWE-20: Improper Input Validation CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 19%CPEs: 1EXPL: 1CVE-2006-4732
https://notcve.org/view.php?id=CVE-2006-4732
13 Sep 2006 — Unspecified vulnerability in Microsoft Visual Basic (VB) 6 has an unknown impact ("overflow") via a project that contains a certain Click event procedure, as demonstrated using the msgbox function and the VB.Label object. Vulnerabilidad no especificada en Microsoft Visual Basic (VB) 6 tiene impacto desconocido ("desbordamiento") mediante un proyecto que contiene cierto procedimiento de eventos Click, como se ha demostrado usando la función msgbox y el objeto VB.Label. • http://securityreason.com/securityalert/1547 •
CVSS: 10.0EPSS: 74%CPEs: 13EXPL: 2CVE-2003-0347 – Microsoft Visual Basic For Applications SDK 5.0/6.0/6.2/6.3 - Document Handling Buffer Overrun
https://notcve.org/view.php?id=CVE-2003-0347
04 Sep 2003 — Heap-based buffer overflow in VBE.DLL and VBE6.DLL of Microsoft Visual Basic for Applications (VBA) SDK 5.0 through 6.3 allows remote attackers to execute arbitrary code via a document with a long ID parameter. • https://www.exploit-db.com/exploits/23094 •
CVSS: 9.8EPSS: 2%CPEs: 2EXPL: 0CVE-2001-0153
https://notcve.org/view.php?id=CVE-2001-0153
03 May 2001 — Buffer overflow in VB-TSQL debugger object (vbsdicli.exe) in Visual Studio 6.0 Enterprise Edition allows remote attackers to execute arbitrary commands. • http://razor.bindview.com/publish/advisories/adv_vbtsql.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •