Welcome to the Virus Encyclopedia of Panda Security.
|worm, Trojan or backdoor. It is a group of critical vulnerabilities in the ActiveX Control for Visual Basic 6.0, which allows arbitrary code to be remotely executed in the vulnerable computer.|
The affected versions are:
- Visual Basic 6.0 Runtime Extended Files.
- Visual Studio .NET 2002 and 2003.
- Visual FoxPro 8.9 and 9.0.
- Office FrontPage 2002.
- Office Project 2003 and 2007.
If exploited successfully, MS08-070 allows hackers to gain remote control of the affected computer with the same privileges as the logged-on user. If this user had administrator rights, the hacker could take complete control of the system: create, modify or delete files, install programs, create new user accounts, etc.
MS08-070 is exploited by hosting a specially crafted website designed to invoke the security patch for this vulnerability. Click here to access the web page for downloading the patch.