3 matches found
Microsoft Visual Studio Add-In本地权限提升漏洞(MS12-021)
BUGTRAQ ID: 52329 CVE ID: CVE-2012-0008 Microsoft Visual Studio(简称VS)是美国微软公司的开发工具包系列产品。 Microsoft Visual Studio从不安全路径加载插件时存在漏洞,通过在某些目录中放置恶意插件,并诱使用户开启VS,本地攻击者可利用此漏洞获取提升的权限。 0 Microsoft Visual Studio 2010 Microsoft Visual Studio 2008 SP1 厂商补丁: Microsoft ---------...
CVE-2012-0008
CVE-2012-0008 affects Microsoft Visual Studio 2008 SP1, 2010, and 2010 SP1 via an untrusted search path vulnerability that allows local privilege escalation when a Trojan horse add-in is loaded from an arbitrary directory. The underlying issue is improper validation/loading of add-ins in the Visu...
Microsoft Visual Studio Add-In Insecure Library Loading (MS12-021; CVE-2012-0008)
An elevation of privilege vulnerability has been reported in Microsoft Visual Studio...