Vulnerability Description
Buffer overflow in Microsoft Visual Basic 6.0 and Enterprise Edition 6.0 SP6 allows user-assisted remote attackers to execute arbitrary code via a Visual Basic project (vbp) file containing a long Reference line, related to VBP_Open and OLE. NOTE: there are limited usage scenarios under which this would be a vulnerability.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Visual Basic | 6.0 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/26704
- http://www.osvdb.org/36936
- http://www.securityfocus.com/bid/25629
- http://www.securitytracker.com/id?1018676
- https://www.exploit-db.com/exploits/4361
- https://www.exploit-db.com/exploits/4431
- http://secunia.com/advisories/26704
- http://www.osvdb.org/36936
- http://www.securityfocus.com/bid/25629
- http://www.securitytracker.com/id?1018676
- https://www.exploit-db.com/exploits/4361
- https://www.exploit-db.com/exploits/4431
FAQ
What is CVE-2007-4776?
CVE-2007-4776 is a vulnerability with a CVSS score of 9.3 (HIGH). Buffer overflow in Microsoft Visual Basic 6.0 and Enterprise Edition 6.0 SP6 allows user-assisted remote attackers to execute arbitrary code via a Visual Basic project (vbp) file containing a long Ref...
How severe is CVE-2007-4776?
CVE-2007-4776 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-4776?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Visual Basic.