CVE Vulnerability

CVE-2007-6357

Stack-based buffer overflow in Microsoft Office Access allows remote, user-assisted attackers to execute arbitrary code via a crafted Microsoft Access Database (.mdb) file. NOTE: due to the lack of details as of 20071210, it is not clear whether this issue is the same as CVE-2007-6026 or CVE-2005-0944.

5.8 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 8.6 / Impact : 4.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact NONE

Scope

References
Link Resource
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9052538&source=rss_topic17
http://www.informationweek.com/shared/printableArticle.jhtml?articleID=204802012
http://www.us-cert.gov/current/index.html#microsoft_access_database_file_attachment
http://osvdb.org/44150
Configurations

Configuration 1

cpe:2.3:a:microsoft:access:*:*:*:*:*:*:*:*
Information

Published : 2007-12-15 01:46

Updated : 2008-11-15 07:04

NVD link : CVE-2007-6357

Mitre link : CVE-2007-6357

Products Affected

Access

Microsoft

CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer