ID CVE-2007-2224
Summary Object linking and embedding (OLE) Automation, as used in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Office 2004 for Mac, and Visual Basic 6.0 allows remote attackers to execute arbitrary code via the substringData method on a TextNode object, which causes an integer overflow that leads to a buffer overflow.
References
Vulnerable Configurations
  • Microsoft Windows 2000 Service Pack 4
    cpe:2.3:o:microsoft:windows_2000:-:sp4
  • Microsoft Windows 2003 Server Service Pack 1
    cpe:2.3:o:microsoft:windows_2003_server:-:sp1
  • Microsoft Windows 2003 Server Service Pack 2
    cpe:2.3:o:microsoft:windows_2003_server:-:sp2
  • Microsoft Windows XP Service Pack 2
    cpe:2.3:o:microsoft:windows_xp:-:sp2
  • Microsoft Office 2004 Mac
    cpe:2.3:a:microsoft:office:2004:-:mac
  • Microsoft visual_basic 6.0
    cpe:2.3:a:microsoft:visual_basic:6.0
CVSS
Base: 9.3 (as of 15-08-2007 - 11:03)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
nessus via4
  • NASL family Windows : Microsoft Bulletins
    NASL id SMB_NT_MS07-043.NASL
    description The remote host contains a version of Microsoft Windows that is affected by a vulnerability in the OLE Automation component that could be abused by an attacker to execute arbitrary code on the remote host. An attacker may be able to execute arbitrary code on the remote host by constructing a malicious script and enticing a victim to visit a web site or view a specially crafted email message.
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 25881
    published 2007-08-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=25881
    title MS07-043: Vulnerability in OLE Automation Could Allow Remote Code Execution (921503)
  • NASL family MacOS X Local Security Checks
    NASL id MACOSX_MS07-044.NASL
    description The remote Mac OS X host is running a version of Microsoft Office 2004 for Mac that is affected by several vulnerabilities. If an attacker can trick a user on the affected host into opening a specially crafted Office file or viewing a specially crafted web page, these issues could be leveraged to execute arbitrary code subject to the user's privileges.
    last seen 2019-02-21
    modified 2018-07-14
    plugin id 50053
    published 2010-10-20
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=50053
    title MS07-043 / MS07-044: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (921503 / 940965) (Mac OS X)
oval via4
accepted 2012-09-10T04:00:05.729-04:00
class vulnerability
contributors
  • name Sudhir Gandhe
    organization Secure Elements, Inc.
  • name Robert L. Hollis
    organization ThreatGuard, Inc.
  • name Chandan S
    organization SecPod Technologies
definition_extensions
  • comment Microsoft Windows 2000 SP4 or later is installed
    oval oval:org.mitre.oval:def:229
  • comment Microsoft Windows XP SP2 or later is installed
    oval oval:org.mitre.oval:def:521
  • comment Microsoft Windows XP SP1 (64-bit) is installed
    oval oval:org.mitre.oval:def:480
  • comment Microsoft Windows XP x64 Edition SP2 is installed
    oval oval:org.mitre.oval:def:4193
  • comment Microsoft Windows Server 2003 SP1 (x86) is installed
    oval oval:org.mitre.oval:def:565
  • comment Microsoft Windows Server 2003 (x64) is installed
    oval oval:org.mitre.oval:def:730
  • comment Microsoft Windows Server 2003 SP1 for Itanium is installed
    oval oval:org.mitre.oval:def:1205
  • comment Microsoft Windows Server 2003 SP2 (x86) is installed
    oval oval:org.mitre.oval:def:1935
  • comment Microsoft Windows Server 2003 SP2 (x64) is installed
    oval oval:org.mitre.oval:def:2161
  • comment Microsoft Windows Server 2003 (ia64) SP2 is installed
    oval oval:org.mitre.oval:def:1442
description Object linking and embedding (OLE) Automation, as used in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Office 2004 for Mac, and Visual Basic 6.0 allows remote attackers to execute arbitrary code via the substringData method on a TextNode object, which causes an integer overflow that leads to a buffer overflow.
family windows
id oval:org.mitre.oval:def:1248
status accepted
submitted 2007-08-15T13:16:00
title OLE Automation Memory Corruption Vulnerability
version 68
refmap via4
bid 25282
bugtraq 20070814 ZDI-07-048: Microsoft Internet Explorer substringData() Heap Overflow Vulnerability
cert TA07-226A
ms MS07-043
sectrack 1018560
secunia 26449
vupen ADV-2007-2867
Last major update 07-03-2011 - 00:00
Published 14-08-2007 - 17:17
Last modified 16-10-2018 - 12:42
Back to Top