HTTP: Microsoft Visual Studio Project File Buffer Overflow

This signature detects attempts to exploit a known vulnerability against Microsoft Visual Studio Project. A successful attack can lead to a stack-based overflow and arbitrary remote code execution within the context of the affected application.

Extended Description

Microsoft Visual Studio is prone to a remote stack-based buffer-overflow vulnerability because it fails to properly bounds check user-supplied input. Remote attackers can exploit this issue to execute arbitrary code with the privileges of the user running the affected application. Visual Studio 9.0 is affected, other versions may also be vulnerable.

Affected Products

Microsoft visual_studio

References

BugTraq: 46601

Short Name
HTTP:STC:MS-VISUALSTUD-BOF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Buffer File Microsoft Overflow Project Studio Visual bid:46601
Release Date
09/11/2014
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3336
False Positive
Unknown
Vendors

Microsoft

Found a potential security threat?