| Vulnerability Name: | CVE-2007-2224 (CCN-28659) | ||||||||
| Assigned: | 2007-08-14 | ||||||||
| Published: | 2007-08-14 | ||||||||
| Updated: | 2018-10-16 | ||||||||
| Summary: | Object linking and embedding (OLE) Automation, as used in Microsoft Windows 2000 SP4, XP SP2, Server 2003 SP1 and SP2, Office 2004 for Mac, and Visual Basic 6.0 allows remote attackers to execute arbitrary code via the substringData method on a TextNode object, which causes an integer overflow that leads to a buffer overflow. | ||||||||
| CVSS v3 Severity: | 9.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
| CVSS v2 Severity: | 9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C) 6.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
5.6 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-189 CWE-119 | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: MITRE Type: CNA CVE-2007-2224 Source: CCN Type: HP Security Bulletin HPSBST02255 SSRT071456 rev.1 Storage Management Appliance (SMA), Microsoft Patch Applicability MS07-042 to MS07-050 Source: CCN Type: SA26449 Microsoft Windows OLE Automation "substringData()" Integer Overflow Source: SECUNIA Type: Vendor Advisory 26449 Source: CCN Type: SECTRACK ID: 1018560 Microsoft OLE Automation Memory Corruption Bug Lets Remote Users Execute Arbitrary Code Source: CCN Type: ASA-2007-367 MS07-043 Vulnerability in OLE Automation Could Allow Remote Code Execution (921503) Source: CCN Type: Microsoft Security Bulletin MS13-020 Vulnerability in OLE Automation Could Allow Remote Code Execution (2802968) Source: CCN Type: Microsoft Security Bulletin MS14-064 Vulnerabilities in Windows OLE Could Allow Remote Code Execution (3011443) Source: CCN Type: Microsoft Security Bulletin MS16-030 Security Update for Windows OLE to Address Remote Code Execution (3143136) Source: CCN Type: Microsoft Security Bulletin MS07-043 Vulnerability in OLE Automation Could Allow Remote Code Execution (921503) Source: CCN Type: Microsoft Security Bulletin MS08-008 Vulnerability in OLE Automation Could Allow Remote Code Execution (947890) Source: CCN Type: Microsoft Security Bulletin MS11-038 Vulnerability in OLE Automation Could Allow Remote Code Execution (2476490) Source: CCN Type: Microsoft Security Bulletin MS11-075 Vulnerability in Microsoft Active Accessibility Could Allow Remote Code Execution (2623699) Source: BUGTRAQ Type: UNKNOWN 20070814 ZDI-07-048: Microsoft Internet Explorer substringData() Heap Overflow Vulnerability Source: BID Type: UNKNOWN 25282 Source: CCN Type: BID-25282 Microsoft OLE Automation SubstringData Function Integer Overflow Vulnerability Source: SECTRACK Type: UNKNOWN 1018560 Source: CERT Type: US Government Resource TA07-226A Source: VUPEN Type: Vendor Advisory ADV-2007-2867 Source: MS Type: UNKNOWN MS07-043 Source: XF Type: UNKNOWN ms-ole-automation-code-execution(28659) Source: OVAL Type: UNKNOWN oval:org.mitre.oval:def:1248 Source: CCN Type: ZDI-07-048 Microsoft Internet Explorer substringData() Heap Overflow Vulnerability | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration 2: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| Oval Definitions | |||||||||
| |||||||||
| BACK | |||||||||