Welcome to our website
To take full advantage of all features you need to login or register. Registration is completely free and takes only a few seconds.
Visual Studio VB-TSQL Object Contains Unchecked Buffer Patch
Posted by Philipp Esselbach on: 03/28/2001 02:53 AM [ Print | 0 comment(s) ]
The VB-TSQL debugger object that ships with Visual Studio 6.0 Enterprise Edition has an unchecked buffer in the code that processes parameters for one of the object´s methods. The object can, by design, be programmatically accessed remotely. If the object were to be referenced by a program that contained specially malformed data within the parameter, eitherof two outcomes would result. In the less serious case, the attacker could cause the object to fail on the hosting machine. In the more serious case, the attacker could exploit the buffer overrun to run code of the attacker´s choice on the hosting machine.
The debugger object (vbsdicli.exe) is installed by default with Visual Studio 6.0 Enterprise Edition and runs in the context of the interactively logged-on user. The attacker could only execute a successful attack if he knew that a user had the component installed and that the user was logged in at the time of the attack.
Read more
The debugger object (vbsdicli.exe) is installed by default with Visual Studio 6.0 Enterprise Edition and runs in the context of the interactively logged-on user. The attacker could only execute a successful attack if he knew that a user had the component installed and that the user was logged in at the time of the attack.
Read more
Related Threads
07/17/2007 12:24 PM: Installation error - Visual studio 6 Enterprise (1) by Wilhelmus
07/27/2007 02:02 PM: Installation error - Visual studio 6 Enterprise (1) by peterh
04/22/2006 08:28 PM: Copy Visual Studio 2005 in CD (2) by ajkannan83
10/24/2005 10:51 PM: Visual Studio 2003 Pro, MSDN CD1 Question (1) by peterh
02/02/2005 08:48 PM: Visual Studio 6.0 Enterprise installation error (3) by bms123
11/19/2003 06:51 AM: Visual Studio .net and Java? (6) by shassouneh
02/22/2003 07:58 PM: howto disable visual styles on specific apps (3) by CUViper
11/26/2002 10:43 PM: Opening .java files with Visual Studio.NET (1) by nebulus
04/13/2002 01:00 PM: Microsoft Visual Studio .NET being a pain to work. Please he (10) by shassouneh
03/20/2002 09:04 PM: Windows XP + Visual Studio.NET = Performance trouble??? (8) by shassouneh
07/27/2007 02:02 PM: Installation error - Visual studio 6 Enterprise (1) by peterh
04/22/2006 08:28 PM: Copy Visual Studio 2005 in CD (2) by ajkannan83
10/24/2005 10:51 PM: Visual Studio 2003 Pro, MSDN CD1 Question (1) by peterh
02/02/2005 08:48 PM: Visual Studio 6.0 Enterprise installation error (3) by bms123
11/19/2003 06:51 AM: Visual Studio .net and Java? (6) by shassouneh
02/22/2003 07:58 PM: howto disable visual styles on specific apps (3) by CUViper
11/26/2002 10:43 PM: Opening .java files with Visual Studio.NET (1) by nebulus
04/13/2002 01:00 PM: Microsoft Visual Studio .NET being a pain to work. Please he (10) by shassouneh
03/20/2002 09:04 PM: Windows XP + Visual Studio.NET = Performance trouble??? (8) by shassouneh