본문 바로가기

Securities/SecurityFocus Vulnerabilities

Microsoft Visual Interdev SLN File Buffer Overflow Vulnerability

Bugtraq ID: 27250
Class: Boundary Condition Error
CVE:
Remote: Yes
Local: No
Published: Jan 11 2008 12:00AM
Updated: Jan 12 2008 01:09AM
Credit: shinnai is credited with the discovery of this vulnerability.
Vulnerable: Microsoft Visual InterDev 6.0
Not Vulnerable:
[discussion]
Microsoft Visual Interdev is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.

Successfully exploiting this issue will allow an attacker to execute arbitrary code with the privileges of the user running the affected application. Failed exploit attempts will result in a denial-of-service condition.

This issue affects Microsoft Visual InterDev 6.0; other versions may also be affected.

[exploit]
The following exploit code is available: [solution]
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.

[references]
Microsoft Visual InterDev Homepage (Microsoft)