Vulnerability Description
Stack-based buffer overflow in a certain ActiveX control in VDT70.DLL in Microsoft Visual Database Tools Database Designer 7.0 for Microsoft Visual Studio 6 allows remote attackers to execute arbitrary code via a long argument to the NotSafe method. NOTE: this may overlap CVE-2007-2885 or CVE-2005-2127.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Visual Database Tools Database Designer | 7.0 |
| Microsoft | Visual Studio | 6.0 |
References
- http://osvdb.org/41080
- https://www.exploit-db.com/exploits/4259
- http://osvdb.org/41080
- https://www.exploit-db.com/exploits/4259
FAQ
What is CVE-2007-4254?
CVE-2007-4254 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Stack-based buffer overflow in a certain ActiveX control in VDT70.DLL in Microsoft Visual Database Tools Database Designer 7.0 for Microsoft Visual Studio 6 allows remote attackers to execute arbitrar...
How severe is CVE-2007-4254?
CVE-2007-4254 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-4254?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Visual Database Tools Database Designer, Microsoft Visual Studio.