CVE-2007-4776
Microsoft Visual Basic 6.0 and Enterprise Edition 6.0 SP6 - Buffer Overflow via Long Reference Line in VBP File
Title source: llmExploitation Summary
EIP tracks 4 public exploits for CVE-2007-4776.
PoCs published by Metasploit, shinnai, Koshi, including Metasploit module exploits/windows/fileformat/ms_visual_basic_vbp.
AI-analyzed exploit summary This Metasploit module exploits a stack-based buffer overflow in Microsoft Visual Basic 6.0 by crafting a malicious VBP file with an overly long reference line, leading to arbitrary code execution.
Description
Buffer overflow in Microsoft Visual Basic 6.0 and Enterprise Edition 6.0 SP6 allows user-assisted remote attackers to execute arbitrary code via a Visual Basic project (vbp) file containing a long Reference line, related to VBP_Open and OLE. NOTE: there are limited usage scenarios under which this would be a vulnerability.
Exploits (4)
This Metasploit module exploits a stack-based buffer overflow in Microsoft Visual Basic 6.0 by crafting a malicious VBP file with an overly long reference line, leading to arbitrary code execution.
This exploit leverages a buffer overflow in Microsoft Visual Basic Enterprise Edition 6.0 SP6 to achieve remote code execution by crafting a malicious .vbp file with a long string and shellcode.
This exploit targets a buffer overflow vulnerability in Microsoft Visual Basic 6.0's .VBP project files. It constructs a malicious .VBP file with a long buffer to overwrite memory and redirect execution to shellcode, achieving arbitrary code execution.
This Metasploit module exploits a stack buffer overflow in Microsoft Visual Basic 6.0 via a crafted VBP file with an overly long reference line to execute arbitrary code. It targets Windows XP SP0-SP3 (x86) and SP1-SP2 (x86-64) by leveraging a 'call esp' instruction in vba6.dll.