CVE-2007-4254

Stack-based buffer overflow in a certain ActiveX control in VDT70.DLL in Microsoft Visual Database Tools Database Designer 7.0 for Microsoft Visual Studio 6 allows remote attackers to execute arbitrary code via a long argument to the NotSafe method. NOTE: this may overlap CVE-2007-2885 or CVE-2005-2127.

Published: Aug 9, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-4254
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / visual_studio	6.0	6.0.x
microsoft / visual_database_tools_database_designer	7.0	7.0.x

http://osvdb.org/41080
https://www.exploit-db.com/exploits/4259

Vulnerability Database

289,599

CVE-2007-4254