NVD

Id
4103  
Name
CVE-2008-4256  
Description
The Charts ActiveX control in Microsoft Visual Basic 6.0, Visual Studio .NET 2002 SP1 and 2003 SP1, and Visual FoxPro 8.0 SP1 and 9.0 SP1 and SP2 does not properly handle errors during access to incorrectly initialized objects, which allows remote attackers to execute arbitrary code via a crafted HTML document, related to corruption of the "system state," aka "Charts Control Memory Corruption Vulnerability."  
Reject
 
CVSS Version
2  
CVSS Score
8.5  
Severity
High  
CVSS Base Score
8.5  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
6.8  
CVSS Vector
(AV:N/AC:M/Au:S/C:C/I:C/A:C)  
Pub Date
2017-01-03  
Published
2008-12-10  
Modified Date
2011-03-07  
Seq
2008-4256  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
26163 4103 CVE-2008-4256 oval:org.mitre.oval:def:5651  View
26164 4103 CVE-2008-4256 http://support.avaya.com/elmodocs2/security/ASA-2008-473.htm  View
26165 4103 CVE-2008-4256 MS08-070  View
26166 4103 CVE-2008-4256 32614  View
26167 4103 CVE-2008-4256 1021369  View
26168 4103 CVE-2008-4256 TA08-344A  View
26169 4103 CVE-2008-4256 ADV-2008-3382  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
46887 JVNDB-2008-002197 Microsoft Visual Basic のチャート ActiveX コントロールにおける任意のコードを実行される脆弱性 Microsoft Visual Basic のチャート ActiveX コントロールには、不正に初期化されたオブジェクトへアクセスした場合のエラー処理に不備があるため、任意のコードを実行される脆弱性が存在します。 CVE-2008-4256 34369 CVE-2008-4256 4103 8.5 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002197.html 2008-12-09 2009-01-20 View