5

CVE-2007-2903

Exploit
Buffer overflow in the HelpPopup method in the Microsoft Office 2000 Controllo UA di Microsoft Office ActiveX control (OUACTRL.OCX) 1.0.1.9 allows remote attackers to cause a denial of service (probably winhlp32.exe crash) via a long first argument.  NOTE: it is not clear whether this issue crosses privilege boundaries.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftOffice Version2000
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 28.51% 0.979
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://moaxb.blogspot.com/2007/05/moaxb-23-microsoft-office-2000.html
Exploit
http://osvdb.org/36034
http://shinnai.altervista.org/viewtopic.php?id=42&t_id=26
http://www.securityfocus.com/bid/24118
http://www.securitytracker.com/id?1018107
http://www.shinnai.altervista.org/moaxb/20070523/ouactrltxt.html
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/34473