KB5029365 for Microsoft Visual Studio 2013 (October 2023)

The Microsoft Visual Studio Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - A vulnerability in DiaSymReader.dll when reading a corrupted PDB file can lead to a Remote Code Execution. CVE-2023-36792, CVE-2023-36793, CVE-2023-36794, CVE-2023-36796 No...

Description of the security update for the remote code execution vulnerability in Microsoft Visual Studio 2013 Update 5: October 10, 2023 (KB5029365)

Description of the security update for the remote code execution vulnerability in Microsoft Visual Studio 2013 Update 5: October 10, 2023 KB5029365 Applies to: All Visual Studio 2013 Update 5 editions except Integrated Shell, Build Tools, and Remote Tools. Notice In December 2023, Visual Studio...

Description of the security update for the remote code execution vulnerability in Microsoft Visual Studio 2013 Update 5: August 9, 2022 (KB5016315)

Description of the security update for the remote code execution vulnerability in Microsoft Visual Studio 2013 Update 5: August 9, 2022 KB5016315 Note: This security update applies to all Visual Studio 2013 Update 5 editions except Isolated and Integrated Shells, Build Tools, Remote Tools, and...

Microsoft Visual Studio 安全漏洞

Microsoft Visual Studio is a family of development tool suites from Microsoft Corporation USA and a largely complete development toolset that includes most of the tools needed throughout the software lifecycle. A security vulnerability exists in Microsoft Visual Studio. The following products and...

Microsoft Visual Studio 安全漏洞

Microsoft Visual Studio is a family of development tool suites from Microsoft Corporation USA and a largely complete development toolset that includes most of the tools needed throughout the software lifecycle. A security vulnerability exists in Microsoft Visual Studio. The following products and...

Exploit for Out-of-bounds Write in Microsoft

PoC exploit for CVE-2021-1732. This repository contains a proof-of-concept exploit for a vulnerability in Microsoft Visual Studio. The target is the Visual Studio 2013 solution file format, specifically the ExploitTest.sln file. The vulnerability class is not explicitly stated, but based on the...

Exploit for CVE-2019-0803

这个漏洞属于未正确处理GDI对象导致的UAF类型本地权限提升漏洞 看雪地址 复现环境 1. Windows 7 sp1 64位操作系统 2. 编译环境Visual Studio 2013 引用 360分析 看雪分析 Poc 分析 关于漏洞的成因,以上两篇引用文章对漏洞的成因已经介绍的很详细,这里不再赘述.本文主要分析漏洞复现的调试过程,和漏洞利用方式的讨论. 在poc中先创建大小为0x350的AcceleratorTable,计算公式为: ACCEL WINAPI CreateAcceleratorTableW InreadscAccel LPACCEL paccel,In int...

Description of the security update for the information disclosure vulnerability in Microsoft Visual Studio 2013 Update 5: July 9, 2019

Description of the security update for the information disclosure vulnerability in Microsoft Visual Studio 2013 Update 5: July 9, 2019 Notice Starting on March 10, 2020, Microsoft Update is now offering this security update to additional versions of the Windows OS. Note This security update appli...

Description of the security update for the remote code execution vulnerability in Visual Studio 2013 Update 5: July 10, 2018 (KB4336986)

Description of the security update for the remote code execution vulnerability in Visual Studio 2013 Update 5: July 10, 2018 KB4336986 Applies to All Visual Studio 2013 Update 5 editions except Team Explorer Notice Starting on March 10, 2020, Microsoft Update is now offering this security update ...

Security Update for the information disclosure vulnerability in Visual Studio 2013 Update 5 (KB4089283)

An information disclosure vulnerability exists when Visual Studio improperly discloses limited contents of uninitialized memory while compiling program database PDB files. An attacker who exploits the vulnerability could view uninitialized memory from the computer that is used to compile a progra...

Microsoft Visual Studio 2013 Shell (Minimum) MSI - language neutral

This MSI includes Visual Studio 2013 RTM and VSU1 RTM...

Security Update for the information disclosure vulnerability in Microsoft Visual Studio 2013 Update 5 (KB5026454)

Information disclosure vulnerability in Microsoft Visual Studio 2013 Update 5...