Vulnerabilities > Microsoft > Visual Studio
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-09-14 | CVE-2007-4890 | Path Traversal vulnerability in Microsoft Visual Studio 6.0 Absolute directory traversal vulnerability in a certain ActiveX control in the VB To VSI Support Library (VBTOVSI.DLL) 1.0.0.0 in Microsoft Visual Studio 6.0 allows remote attackers to create or overwrite arbitrary files via a full pathname in the argument to the SaveAs method. | 5.8 |
2007-08-08 | CVE-2007-4254 | Remote Security vulnerability in Microsoft products Stack-based buffer overflow in a certain ActiveX control in VDT70.DLL in Microsoft Visual Database Tools Database Designer 7.0 for Microsoft Visual Studio 6 allows remote attackers to execute arbitrary code via a long argument to the NotSafe method. network microsoft | 6.8 |
2007-01-24 | CVE-2007-0468 | Remote Security vulnerability in Microsoft Visual Studio 6.0 Stack-based buffer overflow in rcdll.dll in msdev.exe in Visual C++ (MSVC) in Microsoft Visual Studio 6.0 SP6 allows user-assisted remote attackers to execute arbitrary code via a long file path in the "1 TYPELIB MOVEABLE PURE" option in an RC file. network microsoft | 6.8 |
2006-08-31 | CVE-2006-4494 | Denial of Service vulnerability in Microsoft Visual Studio 6.0 Microsoft Visual Studio 6.0 allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code by instantiating certain Visual Studio 6.0 ActiveX COM Objects in Internet Explorer, including (1) tcprops.dll, (2) fp30wec.dll, (3) mdt2db.dll, (4) mdt2qd.dll, and (5) vi30aut.dll. | 7.5 |
2006-03-07 | CVE-2006-1043 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Microsoft Visual Interdev and Visual Studio Stack-based buffer overflow in Microsoft Visual Studio 6.0 and Microsoft Visual InterDev 6.0 allows user-assisted attackers to execute arbitrary code via a long DataProject field in a (1) Visual Studio Database Project File (.dbp) or (2) Visual Studio Solution (.sln). | 5.1 |
2001-05-03 | CVE-2001-0153 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Microsoft Visual Basic and Visual Studio Buffer overflow in VB-TSQL debugger object (vbsdicli.exe) in Visual Studio 6.0 Enterprise Edition allows remote attackers to execute arbitrary commands. | 7.5 |
2000-02-18 | CVE-2000-0162 | Unspecified vulnerability in Microsoft IE, Internet Explorer and Visual Studio The Microsoft virtual machine (VM) in Internet Explorer 4.x and 5.x allows a remote attacker to read files via a malicious Java applet that escapes the Java sandbox, aka the "VM File Reading" vulnerability. | 5.1 |