Microsoft Visual Studio .dbp File DataProject Field Buffer Overflow

2006-03-03T09:02:37
ID OSVDB:23711
Type osvdb
Reporter kozan(kozan@spyinstructors.com), ATmaCA(atmaca@prohack.net)
Modified 2006-03-03T09:02:37

Description

Vulnerability Description

A remote overflow exists in Visual Studio. Visual Studio fails to perform proper boundary checks within the handling of ".dbp" files that contain an overly long string in the "DataProject" field, resulting in a stack-based buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

A remote overflow exists in Visual Studio. Visual Studio fails to perform proper boundary checks within the handling of ".dbp" files that contain an overly long string in the "DataProject" field, resulting in a stack-based buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

References:

Security Tracker: 1015721 Secunia Advisory ID:19081 Other Advisory URL: http://www.spyinstructors.com/show.php?name=Advisories&pa=showpage&pid=73 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-02/0642.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-02/0662.html ISS X-Force ID: 25148 FrSIRT Advisory: ADV-2006-0825 CVE-2006-1043 Bugtraq ID: 16953