What is CVE-2008-3704?

CVE-2008-3704 is a vulnerability in N/a. Published 2008-08-18.

Is CVE-2008-3704 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2008-3704

Heap-based buffer overflow in the MaskedEdit ActiveX control in Msmask32.ocx 6.0.81.69, and possibly other versions before 6.0.84.18, in Microsoft Visual Studio 6.0, Visual Basic 6.0, Visual Studio .NET 2002 SP1 and 2003 SP1, and Visual Fo…

EPSS: 0.875 (99.5th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

1020710 (vdb-entry, x_refsource_SECTRACK)
ADV-2008-2380 (vdb-entry, x_refsource_VUPEN)
ADV-2008-3382 (vdb-entry, x_refsource_VUPEN)
31498 (x_refsource_SECUNIA, third-party-advisory)
oval:org.mitre.oval:def:5794 (x_refsource_OVAL, signature, vdb-entry)
30674 (vdb-entry, x_refsource_BID)
MS08-070 (x_refsource_MS, vendor-advisory)
6244 (exploit, x_refsource_EXPLOIT-DB)
support.avaya.com/elmodocs2/security/ASA-2008-473.htm (x_refsource_CONFIRM)
TA08-344A (x_refsource_CERT, third-party-advisory)

Frequently asked questions

What is CVE-2008-3704?: CVE-2008-3704 is a vulnerability in N/a. Published 2008-08-18.
Is CVE-2008-3704 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.