Lucene search
HistoryOct 20, 2003 - 4:00 a.m.
CVE-2003-0347
cve-2003-0347
buffer overflow
vbe.dll
vbe6.dll
microsoft visual basic for applications
vba sdk 5.0
vba sdk 6.3
remote code execution
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
8 High
AI Score
Confidence
High
0.943 High
EPSS
Percentile
99.2%
Heap-based buffer overflow in VBE.DLL and VBE6.DLL of Microsoft Visual Basic for Applications (VBA) SDK 5.0 through 6.3 allows remote attackers to execute arbitrary code via a document with a long ID parameter.
Affected configurations
Node
microsoftofficeMatch2000
ORmicrosoftofficeMatch2000sp2
ORmicrosoftofficeMatch2000sp3
ORmicrosoftofficeMatchxp
ORmicrosoftofficeMatchxpsp1
ORmicrosoftofficeMatchxpsp2
ORmicrosoftprojectMatch2000
ORmicrosoftprojectMatch2002
ORmicrosoftvisioMatch2002professional
ORmicrosoftvisual_basicMatch5.0sdk
ORmicrosoftvisual_basicMatch6.2
ORmicrosoftvisual_basicMatch6.2sdk
ORmicrosoftvisual_basicMatch6.3sdk
Related
cert
cert
cvelist
cvelist
CVE-2003-0347
2003-09-04 04:00:00
nvd
nvd
CVE-2003-0347
2003-10-20 04:00:00
nessus
nessus
MS03-037: Visual Basic for Application Overflow (822715)
2003-09-04 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
8 High
AI Score
Confidence
High
0.943 High
EPSS
Percentile
99.2%
Related for CVE-2003-0347