Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Windows : Microsoft Bulletins >> Visual Basic for Application Overflow

Vulnerability Assessment Details

Visual Basic for Application Overflow
Vulnerability Assessment Summary
Acertains the version of vbe.dll and vbe6.dll

Detailed Explanation for this Vulnerability Assessment

Summary :

Arbitrary code can be executed on the remote host through VBA.

Description :

The remote host is running a version of Microsoft Visual Basic for Applications
which is vulnerable to a buffer overflow when handling malformed documents.

A possible hacker may exploit this flaw to execute arbitrary code on this host, by
sending a malformed file to a user of the remote host.

Solution :

Microsoft has released a set of patches for Office :

http://www.microsoft.com/technet/security/bulletin/ms03-037.mspx

Network Security Threat Level:

High / CVSS Base Score : 8
(AV:R/AC:H/Au:NR/C:C/A:C/I:C/B:N)

Networks Security ID: 8534

Vulnerability Assessment Copyright: This script is Copyright (C) 2003 Tenable Network Security
Cables, Connectors


Dell PowerEdge R730xd Server 2.60Ghz 32-Core 64GB 800GB SSD Debian Linux picture

Dell PowerEdge R730xd Server 2.60Ghz 32-Core 64GB 800GB SSD Debian Linux

$836.80


1U BareMetal pfsense opnsense Router Firewall DNS Server 6x 10GB Ethernet Ports picture

1U BareMetal pfsense opnsense Router Firewall DNS Server 6x 10GB Ethernet Ports

$149.00


Australia Linux Server- 32 GB RAM + 500 HDD + 6 Core processor picture

Australia Linux Server- 32 GB RAM + 500 HDD + 6 Core processor

$66.19


PFSENSE 15

PFSENSE 15" Depth Server Router Firewall Supermicro X11SSH-F E3-1240 V5 32GB RAM

$382.00


Open Eye OE-MTX08 8TB Micro Server With Linux (Boots To Login) No Accessories picture

Open Eye OE-MTX08 8TB Micro Server With Linux (Boots To Login) No Accessories

$294.95


LattePanda Sigma - x86 Windows / Linux Single Board Computer Server (32GB RAM) picture

LattePanda Sigma - x86 Windows / Linux Single Board Computer Server (32GB RAM)

$550.00


IBM Power8 S822L 20-Core 3.42GHz 256Gb 1.2Tb 40G Elastic Storage Server 5148-22L picture

IBM Power8 S822L 20-Core 3.42GHz 256Gb 1.2Tb 40G Elastic Storage Server 5148-22L

$599.95


IBM E850 Power8 2x 12C 3.02GHz 512Gb 1.8Tb SAS 10GbE 16Gb Linux Server 8408-E8E picture

IBM E850 Power8 2x 12C 3.02GHz 512Gb 1.8Tb SAS 10GbE 16Gb Linux Server 8408-E8E

$899.95


POGO Linux WEBWARE 1150 Rack-Mount Server Pentium 4 2.8GHz 512MB - No Drives picture

POGO Linux WEBWARE 1150 Rack-Mount Server Pentium 4 2.8GHz 512MB - No Drives

$179.99


1U Open Source Router Firewall X10SLH-N6-ST031 E3-1270 V3 6x 10GB Ethernet 16GB picture

1U Open Source Router Firewall X10SLH-N6-ST031 E3-1270 V3 6x 10GB Ethernet 16GB

$419.00


Discussions

No Discussions have been posted on this vulnerability.