Bugtraq ID: | 27250 |
Class: | Boundary Condition Error |
CVE: | |
Remote: | Yes |
Local: | No |
Published: | Jan 11 2008 12:00AM |
Updated: | Jan 12 2008 01:09AM |
Credit: | shinnai is credited with the discovery of this vulnerability. |
Vulnerable: | Microsoft Visual InterDev 6.0 |
Not Vulnerable: |
Microsoft Visual Interdev is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.
Successfully exploiting this issue will allow an attacker to execute arbitrary code with the privileges of the user running the affected application. Failed exploit attempts will result in a denial-of-service condition.
This issue affects Microsoft Visual InterDev 6.0; other versions may also be affected.
[exploit]
The following exploit code is available: [solution]
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.
[references]
Microsoft Visual InterDev Homepage (Microsoft)