CVE-2006-1043

2006-03-0711:02:00

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

AI Score

7.7

Confidence

Low

EPSS

0.966

Percentile

99.6%

JSON

Stack-based buffer overflow in Microsoft Visual Studio 6.0 and Microsoft Visual InterDev 6.0 allows user-assisted attackers to execute arbitrary code via a long DataProject field in a (1) Visual Studio Database Project File (.dbp) or (2) Visual Studio Solution (.sln).

Affected configurations

Nvd

Node

microsoftvisual_interdevMatch6.0

microsoftvisual_studioMatch6.0

microsoftvisual_studioMatch6.0sp1

microsoftvisual_studioMatch6.0sp2

microsoftvisual_studioMatch6.0sp3

microsoftvisual_studioMatch6.0sp4

microsoftvisual_studioMatch6.0sp5

VendorProductVersionCPE
microsoftvisual_interdev6.0cpe:2.3:a:microsoft:visual_interdev:6.0:*:*:*:*:*:*:*
microsoftvisual_studio6.0cpe:2.3:a:microsoft:visual_studio:6.0:*:*:*:*:*:*:*
microsoftvisual_studio6.0cpe:2.3:a:microsoft:visual_studio:6.0:sp1:*:*:*:*:*:*
microsoftvisual_studio6.0cpe:2.3:a:microsoft:visual_studio:6.0:sp2:*:*:*:*:*:*
microsoftvisual_studio6.0cpe:2.3:a:microsoft:visual_studio:6.0:sp3:*:*:*:*:*:*
microsoftvisual_studio6.0cpe:2.3:a:microsoft:visual_studio:6.0:sp4:*:*:*:*:*:*
microsoftvisual_studio6.0cpe:2.3:a:microsoft:visual_studio:6.0:sp5:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	visual_interdev	6.0	cpe:2.3:a:microsoft:visual_interdev:6.0:::::::*
microsoft	visual_studio	6.0	cpe:2.3:a:microsoft:visual_studio:6.0:::::::*
microsoft	visual_studio	6.0	cpe:2.3:a:microsoft:visual_studio:6.0:sp1::::::
microsoft	visual_studio	6.0	cpe:2.3:a:microsoft:visual_studio:6.0:sp2::::::
microsoft	visual_studio	6.0	cpe:2.3:a:microsoft:visual_studio:6.0:sp3::::::
microsoft	visual_studio	6.0	cpe:2.3:a:microsoft:visual_studio:6.0:sp4::::::
microsoft	visual_studio	6.0	cpe:2.3:a:microsoft:visual_studio:6.0:sp5::::::