Memory corruption

2008-12-1014:00:00

PRIOn knowledge base

www.prio-n.com

7.7 High

AI Score

Confidence

High

0.869 High

EPSS

Percentile

98.6%

JSON

The FlexGrid ActiveX control in Microsoft Visual Basic 6.0, Visual FoxPro 8.0 SP1 and 9.0 SP1 and SP2, Office FrontPage 2002 SP3, and Office Project 2003 SP3 does not properly handle errors during access to incorrectly initialized objects, which allows remote attackers to execute arbitrary code via a crafted HTML document, related to corruption of the “system state,” aka “FlexGrid Control Memory Corruption Vulnerability.”

CPENameOperatorVersion
office_frontpageeq2002 sp3
projecteq2003 sp3
projecteq2007 sp1
projecteq2007
visual_basiceq6.0 runtimeextendedfiles
visual_foxproeq9.0 sp2
visual_foxproeq8.0 sp1
visual_foxproeq9.0 sp1
visual_studio_.neteq2003 sp1
visual_studio_.neteq2002 sp1

Name	Operator	Version
office_frontpage	eq	2002 sp3
project	eq	2003 sp3
project	eq	2007 sp1
project	eq	2007
visual_basic	eq	6.0 runtimeextendedfiles
visual_foxpro	eq	9.0 sp2
visual_foxpro	eq	8.0 sp1
visual_foxpro	eq	9.0 sp1
visual_studio_.net	eq	2003 sp1
visual_studio_.net	eq	2002 sp1