← Back

CVE-2003-0347

nvd nist
Published: Oct 20, 2003Modified: Apr 16, 2026

JSON object

Loading...
10.0
Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 10.0 / Impact: 10.0
Source: NVD

Description

Heap-based buffer overflow in VBE.DLL and VBE6.DLL of Microsoft Visual Basic for Applications (VBA) SDK 5.0 through 6.3 allows remote attackers to execute arbitrary code via a document with a long ID parameter.

Affected (13)

Microsoft
4 products
Office
Project
Visio
Visual Basic
Configuration A
13 vulnerable
Vulnerable SoftwareAffected Versions
Microsoft
Office
Version 2000
Office
Version 2000 sp2
Office
Version 2000 sp3
Office
Version xp
Office
Version xp sp1
Office
Version xp sp2
Microsoft
Project
Version 2000
Project
Version 2002
Visio
Version 2002
Microsoft
Visual Basic
Version 5.0
Visual Basic
Version 6.2
Visual Basic
Version 6.2
Visual Basic
Version 6.3

References (12)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
US Government Resource
Source: cve@mitre.org
ExploitPatchVendor Advisory
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitPatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.