4 results (0.014 seconds)

CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 2

Buffer overflow in Microsoft Visual InterDev 6.0 (SP6) allows user-assisted attackers to execute arbitrary code via a Studio Solution (.SLN) file with a long malformed Project line beginning with a 'Project("{}") =' sequence, probably a different vector than CVE-2008-0250. Desbordamiento de búfer en Microsoft Visual InterDev 6.0 (SP6) permite a atacantes asistidos por el usuario ejecutar código se su elección a través de un fichero Studio Solution (.SLN)con un línea Project malformada que comienza con una secuencia 'Project("{}") =', posiblemente un vector diferente a CVE-2008-0250. • https://www.exploit-db.com/exploits/5349 https://www.exploit-db.com/exploits/4892 https://exchange.xforce.ibmcloud.com/vulnerabilities/41826 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 9.3EPSS: 1%CPEs: 1EXPL: 4

Buffer overflow in Microsoft Visual InterDev 6.0 (SP6) allows user-assisted attackers to execute arbitrary code via a Studio Solution (.SLN) file with a long Project line. Desbordamiento de buffer en Microsoft Visual InterDev 6.0 (SP6). Permite que atacantes con ayuda del usuario ejecuten código arbitrario a través de un fichero Studio Solution (.SLN) con una linea larga de proyecto. • https://www.exploit-db.com/exploits/5349 https://www.exploit-db.com/exploits/4892 http://secunia.com/advisories/28482 http://shinnai.altervista.org/exploits/txt/TXT_PoEOrFM8py30PXrDF7IY.html http://www.securityfocus.com/bid/27250 https://exchange.xforce.ibmcloud.com/vulnerabilities/41826 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 5.1EPSS: 96%CPEs: 7EXPL: 3

Stack-based buffer overflow in Microsoft Visual Studio 6.0 and Microsoft Visual InterDev 6.0 allows user-assisted attackers to execute arbitrary code via a long DataProject field in a (1) Visual Studio Database Project File (.dbp) or (2) Visual Studio Solution (.sln). • https://www.exploit-db.com/exploits/1555 http://secunia.com/advisories/19081 http://securitytracker.com/id?1015721 http://www.frsirt.com/exploits/20060305.ms-visual-dbp.c.php http://www.osvdb.org/23711 http://www.securityfocus.com/archive/1/426767/100/0/threaded http://www.securityfocus.com/archive/1/426830/100/0/threaded http://www.securityfocus.com/bid/16953 http://www.vupen.com/english/advisories/2006/0825 https://exchange.xforce.ibmcloud.com/vulnerabilities/25148 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 7.5EPSS: 2%CPEs: 2EXPL: 0

Microsoft Internet Information Services (IIS) server 4.0 SP4, without certain hotfixes released for SP4, does not require authentication credentials under certain conditions, which allows remote attackers to bypass authentication requirements, as demonstrated by connecting via Microsoft Visual InterDev 6.0. • http://archives.neohapsis.com/archives/ntbugtraq/1998-1999/msg00276.html http://archives.neohapsis.com/archives/ntbugtraq/1998-1999/msg00277.html http://www.securityfocus.com/bid/190 •