exploitDog

CVE-2007-6026

Опубликовано: 20 нояб. 2007

Источник: nvd

CVSS2: 9.3

EPSS Высокий

Описание

Stack-based buffer overflow in Microsoft msjet40.dll 4.0.8618.0 (aka Microsoft Jet Engine), as used by Access 2003 in Microsoft Office 2003 SP3, allows user-assisted attackers to execute arbitrary code via a crafted MDB file database file containing a column structure with a modified column count. NOTE: this might be the same issue as CVE-2005-0944.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:jet:4.0.8618.0:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:office:2003:sp3:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_2003_server:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*

EPSS

Процентиль: 99%

0.77332

Высокий

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-2r22-4xgm-wjg8

github

почти 4 года назад

Stack-based buffer overflow in Microsoft msjet40.dll 4.0.8618.0 (aka Microsoft Jet Engine), as used by Access 2003 in Microsoft Office 2003 SP3, allows user-assisted attackers to execute arbitrary code via a crafted MDB file database file containing a column structure with a modified column count. NOTE: this might be the same issue as CVE-2005-0944.

EPSS

Процентиль: 99%

0.77332

Высокий

9.3 Critical

CVSS2

Дефекты

CWE-119