Vulnerabilities > CVE-2007-2903 - Buffer Overflow vulnerability in Microsoft Office 2000
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Buffer overflow in the HelpPopup method in the Microsoft Office 2000 Controllo UA di Microsoft Office ActiveX control (OUACTRL.OCX) 1.0.1.9 allows remote attackers to cause a denial of service (probably winhlp32.exe crash) via a long first argument. NOTE: it is not clear whether this issue crosses privilege boundaries.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Microsoft Office 2000 (OUACTRL.OCX v. 1.0.1.9) Remote DoS Exploit. CVE-2007-2903. Dos exploit for windows platform |
| id | EDB-ID:3973 |
| last seen | 2016-01-31 |
| modified | 2007-05-23 |
| published | 2007-05-23 |
| reporter | shinnai |
| source | https://www.exploit-db.com/download/3973/ |
| title | Microsoft Office 2000 OUACTRL.OCX 1.0.1.9 - Remote DoS Exploit |
References
- http://moaxb.blogspot.com/2007/05/moaxb-23-microsoft-office-2000.html
- http://osvdb.org/36034
- http://shinnai.altervista.org/viewtopic.php?id=42&t_id=26
- http://www.securityfocus.com/bid/24118
- http://www.securitytracker.com/id?1018107
- http://www.shinnai.altervista.org/moaxb/20070523/ouactrltxt.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34473