{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Microsoft Visual FoxPro 9.0 Service Pack 1 ;","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual FoxPro 9.0 Service Pack 2 ;","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office Project 2007 ;","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio .NET 2003 Service Pack 1 ;","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Fichiers \u00e9tendus de l'environnement d'ex\u00e9cution de Microsoft Visual Basic 6.0 ;","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual FoxPro 8.0 Service Pack 1 ;","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Office Project 2007 Service Pack 1.","product":{"name":"Office","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio .NET 2002 Service Pack 1 ;","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nSix vuln\u00e9rabilit\u00e9s affectant le contr\u00f4le ActiveX Visual Basic 6.0 ont\n\u00e9t\u00e9 corrig\u00e9es. Elles permettent \u00e0 une personne malintentionn\u00e9e\nd'ex\u00e9cuter du code arbitraire \u00e0 distance dans le contexte d'ex\u00e9cution de\nl'application cibl\u00e9e, et cela au moyen d'un document ou d'une page\ninternet sp\u00e9cifiquement r\u00e9alis\u00e9s.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 Microsoft MS08-070 du 9 d\u00e9cembre 2008\npour l'obtention des correctifs (cf. section Documentation).\n","cves":[{"name":"CVE-2008-4253","url":"https://www.cve.org/CVERecord?id=CVE-2008-4253"},{"name":"CVE-2008-4256","url":"https://www.cve.org/CVERecord?id=CVE-2008-4256"},{"name":"CVE-2008-3704","url":"https://www.cve.org/CVERecord?id=CVE-2008-3704"},{"name":"CVE-2008-4255","url":"https://www.cve.org/CVERecord?id=CVE-2008-4255"},{"name":"CVE-2008-4252","url":"https://www.cve.org/CVERecord?id=CVE-2008-4252"},{"name":"CVE-2008-4254","url":"https://www.cve.org/CVERecord?id=CVE-2008-4254"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft MS08-070 du 09 d\u00e9cembre 2008    :","url":"http://www.microsoft.com/france/technet/security/Bulletin/MS08-070.mspx"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft MS08-070 du 09 d\u00e9cembre 2008    :","url":"http://www.microsoft.com/technet/security/Bulletin/MS08-070.mspx"}],"reference":"CERTA-2008-AVI-584","revisions":[{"description":"version initiale.","revision_date":"2008-12-09T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"Plusieurs vuln\u00e9rabilit\u00e9s affectent le contr\u00f4le ActiveX <span\nclass=\"textit\">Visual Basic 6.0</span> et permettent l'ex\u00e9cution de code\narbitraire \u00e0 distance.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans Visual Basic","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft MS08-070 du 9 d\u00e9cembre 2008","url":null}]}