5

CVE-2007-2903

Exploit

EPSS 42.09%
Published 30.05.2007 10:30:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Buffer overflow in the HelpPopup method in the Microsoft Office 2000 Controllo UA di Microsoft Office ActiveX control (OUACTRL.OCX) 1.0.1.9 allows remote attackers to cause a denial of service (probably winhlp32.exe crash) via a long first argument.  NOTE: it is not clear whether this issue crosses privilege boundaries.

Affected products Warnungen 0 Metrics 2 CWE 0 References 10

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Office Version2000

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	42.09%	0.973

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

http://moaxb.blogspot.com/2007/05/moaxb-23-microsoft-office-2000.html

Exploit

http://osvdb.org/36034

http://shinnai.altervista.org/viewtopic.php?id=42&t_id=26

http://www.securityfocus.com/bid/24118

http://www.securitytracker.com/id?1018107

http://www.shinnai.altervista.org/moaxb/20070523/ouactrltxt.html

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/34473

https://nvd.nist.gov/vuln/detail/CVE-2007-2903

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-2903

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-2903

EUVD