Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0187

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2006-0187
Last Modified 07 Mar 2011 09:29:32
Published 12 Jan 2006 01:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-0187

Summary

By design, Microsoft Visual Studio 2005 automatically executes code in the Load event of a user-defined control (UserControl1_Load function), which allows user-assisted attackers to execute arbitrary code by tricking the user into opening a malicious Visual Studio project file.

Vulnerable Systems

Application

  • Microsoft Visual Studio .net 2005


References

VUPEN - ADV-2006-0151

BID - 16225

BUGTRAQ - 20060113 Visual Studio Remote Code Execution

SECUNIA - 18409

XF - visualstudio-usercontrol-code-execution(24116)


Last Updated: 27 May 2016 10:41:34