Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1043

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2006-1043
Last Modified 02 Aug 2011 12:00:00
Published 07 Mar 2006 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-1043

Summary

Stack-based buffer overflow in Microsoft Visual Studio 6.0 and Microsoft Visual InterDev 6.0 allows user-assisted attackers to execute arbitrary code via a long DataProject field in a (1) Visual Studio Database Project File (.dbp) or (2) Visual Studio Solution (.sln).

Vulnerable Systems

Application

  • Microsoft Visual Interdev 6.0

  • Microsoft Visual Studio 6.0


References

XF - visualstudio-dataproject-bo(25148)

VUPEN - ADV-2006-0825

BID - 16953

BUGTRAQ - 20060305 Microsoft Visual Studio 6.0 Sp6 Malformed .dbp File BoF Exploit

BUGTRAQ - 20060304 Visual Studio 6.0 Buffer Overflow Vulnerability

OSVDB - 23711

MISC - http://www.frsirt.com/exploits/20060305.ms-visual-dbp.c.php

SECTRACK - 1015721

SECUNIA - 19081


Last Updated: 27 May 2016 10:41:54