CVE-2006-5559

critical

Description

The Execute method in the ADODB.Connection 2.7 and 2.8 ActiveX control objects (ADODB.Connection.2.7 and ADODB.Connection.2.8) in the Microsoft Data Access Components (MDAC) 2.5 SP3, 2.7 SP1, 2.8, and 2.8 SP1 does not properly track freed memory when the second argument is a BSTR, which allows remote attackers to cause a denial of service (Internet Explorer crash) and possibly execute arbitrary code via certain strings in the second and third arguments.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A214

https://exchange.xforce.ibmcloud.com/vulnerabilities/29837

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-009

http://www.vupen.com/english/advisories/2007/0578

http://www.us-cert.gov/cas/techalerts/TA07-044A.html

http://www.osvdb.org/31882

http://www.kb.cert.org/vuls/id/589272

http://secunia.com/advisories/22452

http://research.eeye.com/html/alerts/zeroday/20061027.html

http://blogs.technet.com/msrc/archive/2006/10/27/adodb-connection-poc-published.aspx

Details

Source: Mitre, NVD

Published: 2006-10-27

Updated: 2018-10-12

Risk Information

CVSS v2

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical