CVE-2006-5559

EXPLOITED

Microsoft Data Access Components - Improper Input Validation

Title source: rule

Description

The Execute method in the ADODB.Connection 2.7 and 2.8 ActiveX control objects (ADODB.Connection.2.7 and ADODB.Connection.2.8) in the Microsoft Data Access Components (MDAC) 2.5 SP3, 2.7 SP1, 2.8, and 2.8 SP1 does not properly track freed memory when the second argument is a BSTR, which allows remote attackers to cause a denial of service (Internet Explorer crash) and possibly execute arbitrary code via certain strings in the second and third arguments.

Exploits (1)

exploitdb WORKING POC VERIFIED

by YAG KOHHA · htmldoswindows

https://www.exploit-db.com/exploits/2629

View Code ZIP pw:eip

References (12)

[Various Sources] http://blogs.technet.com/msrc/archive/2006/10/27/adodb-connection-poc-published.aspx

[Patch] http://research.eeye.com/html/alerts/zeroday/20061027.html

[Vendor Advisory] http://secunia.com/advisories/22452

[Exploit, Patch, Vendor Advisory] http://securitytracker.com/id?1017127

[Patch, US Government Resource] http://www.kb.cert.org/vuls/id/589272

[Third Party Advisory, VDB Entry] http://www.osvdb.org/31882

[Exploit, Patch] http://www.securityfocus.com/bid/20704

[US Government Resource] http://www.us-cert.gov/cas/techalerts/TA07-044A.html

[Vendor Advisory] http://www.vupen.com/english/advisories/2007/0578

[Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-009

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/29837

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A214

Scores

EPSS 0.7260

EPSS Percentile 98.8%

Details

VulnCheck KEV 2010-05-01

CWE

CWE-20

Status published

Products (3)

microsoft/data_access_components 2.5 sp3

microsoft/data_access_components 2.8 sp1 (2 CPE variants)

microsoft/data_access_components 2.7 sp1

Published Oct 27, 2006

Tracked Since Feb 18, 2026