Visual Studio@2010 Security Vulnerabilities and Issues — Visual Studio@2010 CVE List

Lucene search

MicrosoftVisual Studio2010

8 matches found

CVE•added 2010/08/31 8:0 p.m.•186 views

CVE-2010-3190

Untrusted search path vulnerability in the Microsoft Foundation Class (MFC) Library in Microsoft Visual Studio .NET 2003 SP1; Visual Studio 2005 SP1, 2008 SP1, and 2010; Visual C++ 2005 SP1, 2008 SP1, and 2010; and Exchange Server 2010 Service Pack 3, 2013, and 2013 allows local users to gain privi...

9.3CVSS7.4AI score0.50112EPSS

CVE•added 2012/03/13 9:55 p.m.•152 views

CVE-2012-0008

Untrusted search path vulnerability in Microsoft Visual Studio 2008 SP1, 2010, and 2010 SP1 allows local users to gain privileges via a Trojan horse add-in in an unspecified directory, aka "Visual Studio Add-In Vulnerability."

6.9CVSS6.4AI score0.0294EPSS

CVE•added 2011/06/16 8:55 p.m.•150 views

CVE-2011-1280

The XML Editor in Microsoft InfoPath 2007 SP2 and 2010; SQL Server 2005 SP3 and SP4 and 2008 SP1, SP2, and R2; SQL Server Management Studio Express (SSMSE) 2005; and Visual Studio 2005 SP1, 2008 SP1, and 2010 does not properly handle external entities, which allows remote attackers to read arbitrar...

4.3CVSS7AI score0.33585EPSS

CVE•added 2019/07/15 7:15 p.m.•124 views

CVE-2019-1079

An information disclosure vulnerability exists when Visual Studio improperly parses XML input in certain settings files, aka 'Visual Studio Information Disclosure Vulnerability'.

6.5CVSS6.7AI score0.25343EPSS

CVE•added 2019/01/08 9:29 p.m.•120 views

CVE-2019-0537

An information disclosure vulnerability exists when Visual Studio improperly discloses arbitrary file contents if the victim opens a malicious .vscontent file, aka "Microsoft Visual Studio Information Disclosure Vulnerability." This affects Microsoft Visual Studio.

5.5CVSS5.1AI score0.26918EPSS

CVE•added 2018/07/11 12:29 a.m.•114 views

CVE-2018-8172

A remote code execution vulnerability exists in Visual Studio software when the software does not check the source markup of a file for an unbuilt project, aka "Visual Studio Remote Code Execution Vulnerability." This affects Microsoft Visual Studio, Expression Blend 4.

9.3CVSS7.9AI score0.24612EPSS

CVE•added 2018/04/12 1:29 a.m.•87 views

CVE-2018-1037

An information disclosure vulnerability exists when Visual Studio improperly discloses limited contents of uninitialized memory while compiling program database (PDB) files, aka "Microsoft Visual Studio Information Disclosure Vulnerability." This affects Microsoft Visual Studio.

4.3CVSS3.9AI score0.06421EPSS

CVE•added 2014/05/20 11:55 p.m.•82 views

CVE-2014-3802

msdia.dll in Microsoft Debug Interface Access (DIA) SDK, as distributed in Microsoft Visual Studio before 2013, does not properly validate an unspecified variable before use in calculating a dynamic-call address, which allows remote attackers to execute arbitrary code or cause a denial of service (...

6.8CVSS7.9AI score0.1121EPSS