CVE-2008-3704

Heap-based buffer overflow in the MaskedEdit ActiveX control in Msmask32.ocx 6.0.81.69, and possibly other versions before 6.0.84.18, in Microsoft Visual Studio 6.0, Visual Basic 6.0, Visual Studio .NET 2002 SP1 and 2003 SP1, and Visual FoxPro 8.0 SP1 and 9.0 SP1 and SP2 allows remote attackers to execute arbitrary code via a long Mask parameter, related to not "validating property values with boundary checks," as exploited in the wild in August 2008, aka "Masked Edit Control Memory Corruption Vulnerability."

CVSS v2.0 9.3 HIGH

9.3^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://secunia.com/advisories/31498	Vendor Advisory
http://support.avaya.com/elmodocs2/security/ASA-2008-473.htm
http://www.securityfocus.com/bid/30674	Exploit Patch
http://www.securitytracker.com/id?1020710
http://www.us-cert.gov/cas/techalerts/TA08-344A.html	US Government Resource
http://www.vupen.com/english/advisories/2008/2380	Vendor Advisory
http://www.vupen.com/english/advisories/2008/3382	Vendor Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-070
https://exchange.xforce.ibmcloud.com/vulnerabilities/44444
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5794
https://www.exploit-db.com/exploits/6244
https://www.exploit-db.com/exploits/6317

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:microsoft:visual_basic:6.0:::::::*
	cpe:2.3:a:microsoft:visual_foxpro:8.0:sp1::::::
	cpe:2.3:a:microsoft:visual_foxpro:9.0:sp1::::::
	cpe:2.3:a:microsoft:visual_foxpro:9.0:sp2::::::
	cpe:2.3:a:microsoft:visual_studio:6.0:::::::*
	cpe:2.3:a:microsoft:visual_studio_.net:2002:sp1::::::
	cpe:2.3:a:microsoft:visual_studio_.net:2003:sp1::::::

History

No history.

Information

Published : 2008-08-18 19:41

Updated : 2023-12-10 10:51

NVD link : CVE-2008-3704

Mitre link : CVE-2008-3704

CVE.ORG link : CVE-2008-3704

JSON object : View

Products Affected

microsoft

visual_foxpro
visual_studio_.net
visual_basic
visual_studio

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

{"id": "CVE-2008-3704", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2008-08-18T19:41:00.000", "references": [{"url": "http://secunia.com/advisories/31498", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://support.avaya.com/elmodocs2/security/ASA-2008-473.htm", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/30674", "tags": ["Exploit", "Patch"], "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1020710", "source": "cve@mitre.org"}, {"url": "http://www.us-cert.gov/cas/techalerts/TA08-344A.html", "tags": ["US Government Resource"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2008/2380", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2008/3382", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-070", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/44444", "source": "cve@mitre.org"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5794", "source": "cve@mitre.org"}, {"url": "https://www.exploit-db.com/exploits/6244", "source": "cve@mitre.org"}, {"url": "https://www.exploit-db.com/exploits/6317", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "Heap-based buffer overflow in the MaskedEdit ActiveX control in Msmask32.ocx 6.0.81.69, and possibly other versions before 6.0.84.18, in Microsoft Visual Studio 6.0, Visual Basic 6.0, Visual Studio .NET 2002 SP1 and 2003 SP1, and Visual FoxPro 8.0 SP1 and 9.0 SP1 and SP2 allows remote attackers to execute arbitrary code via a long Mask parameter, related to not \"validating property values with boundary checks,\" as exploited in the wild in August 2008, aka \"Masked Edit Control Memory Corruption Vulnerability.\""}, {"lang": "es", "value": "Un desbordamiento de b\u00fafer en la regi\u00f3n heap de la memoria en el control ActiveX de MaskedEdit en msmask32.ocx versi\u00f3n 6.0.81.69, y posiblemente en otras versiones anteriores a 6.0.84.18, en Visual Studio versi\u00f3n 6.0, Visual Basic versi\u00f3n 6.0, Visual Studio .NET 2002 SP1 y 2003 SP1, y Visual FoxPro versiones 8.0 SP1 y 9.0 SP1 y SP2, de Microsoft, permite a los atacantes remotos ejecutar c\u00f3digo arbitrario por medio de un par\u00e1metro Mask largo, relacionado con la no \"validating property values with boundary checks\", como se explot\u00f3 \u201cin the wild\u201d en Agosto de 2008, tambi\u00e9n se conoce como \"Masked Edit Control Memory Corruption Vulnerability\"."}], "lastModified": "2018-10-12T21:48:18.577", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:visual_basic:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "42D281B3-B2E0-4E36-B1BD-83865AE4B3C5"}, {"criteria": "cpe:2.3:a:microsoft:visual_foxpro:8.0:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E5DE8B76-FA09-4EA2-9535-758C56C4C099"}, {"criteria": "cpe:2.3:a:microsoft:visual_foxpro:9.0:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "478347F8-6256-4DE6-AD6A-91631A9E6DD1"}, {"criteria": "cpe:2.3:a:microsoft:visual_foxpro:9.0:sp2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5E711CC3-9094-4C54-A794-9C7A3E7F4AFA"}, {"criteria": "cpe:2.3:a:microsoft:visual_studio:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D5CDA0E2-DFBD-4EE0-80DC-76AA55ADFEFC"}, {"criteria": "cpe:2.3:a:microsoft:visual_studio_.net:2002:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "747E3E3A-85C1-4E55-B7F8-C5207F247498"}, {"criteria": "cpe:2.3:a:microsoft:visual_studio_.net:2003:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "85959AEB-2FE5-4A25-B298-F8223CE260D6"}], "operator": "OR"}]}], "evaluatorComment": "Additional advisory information from Secunia: http://secunia.com/advisories/31498/", "sourceIdentifier": "cve@mitre.org", "evaluatorSolution": "\"Visual Studio 6 was last updated June 2000, a Microsoft spokeswoman told SCMagazineUS.com. The version is no longer supported. Visual Studio 2008 is the latest release and microsoft encourages users to update to the newest version.\"\r\n\r\nSource: http://www.scmagazineus.com/Microsoft-looks-into-Visual-Studio-bug/article/115459/"}