This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:microsoft:visual_studio_.net
Detail
VendorMicrosoftFirst view 2004-08-06
ProductVisual Studio .NetLast view 2013-07-09
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

CPE NameAffected CVE
cpe:/a:microsoft:visual_studio_.net:20053
cpe:/a:microsoft:visual_studio_.net:2005:sp18
cpe:/a:microsoft:visual_studio_.net:20031
cpe:/a:microsoft:visual_studio_.net:2003::enterprise_architect1
cpe:/a:microsoft:visual_studio_.net:2003:gold5
Hide | Show 11 More...
CPE NameAffected CVE
cpe:/a:microsoft:visual_studio_.net:2003:sp122
cpe:/a:microsoft:visual_studio_.net:20021
cpe:/a:microsoft:visual_studio_.net:2002:gold3
cpe:/a:microsoft:visual_studio_.net:2002:sp19
cpe:/a:microsoft:visual_studio_.net:20001
cpe:/a:microsoft:visual_studio_.net:2000:sp11
cpe:/a:microsoft:visual_studio_.net:gold::enterprise_developer1
cpe:/a:microsoft:visual_studio_.net:gold::professional1
cpe:/a:microsoft:visual_studio_.net:gold::trial1
cpe:/a:microsoft:visual_studio_.net:gold::academic1
cpe:/a:microsoft:visual_studio_.net:gold::enterprise_architect1

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
9.32013-07-09CVE-2013-3129NetworkMediumNone Requ...
9.32010-08-31CVE-2010-3190NetworkMediumNone Requ...
9.32009-10-14CVE-2009-3126NetworkMediumNone Requ...
9.32009-10-14CVE-2009-2528NetworkMediumNone Requ...
9.32009-10-14CVE-2009-2504NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
9.32009-10-14CVE-2009-2503NetworkMediumNone Requ...
9.32009-10-14CVE-2009-2502NetworkMediumNone Requ...
9.32009-10-14CVE-2009-2501NetworkMediumNone Requ...
9.32009-10-14CVE-2009-2500NetworkMediumNone Requ...
9.32009-08-12CVE-2009-2496NetworkMediumNone Requ...
7.82009-07-29CVE-2009-2495NetworkLowNone Requ...
9.32009-07-29CVE-2009-2493NetworkMediumNone Requ...
9.32009-07-29CVE-2009-0901NetworkMediumNone Requ...
8.52008-12-10CVE-2008-4256NetworkMediumRequires ...
9.32008-12-10CVE-2008-4255NetworkMediumNone Requ...
8.52008-12-10CVE-2008-4254NetworkMediumRequires ...
8.52008-12-10CVE-2008-4253NetworkMediumRequires ...
8.52008-12-10CVE-2008-4252NetworkMediumRequires ...
9.32008-08-18CVE-2008-3704NetworkMediumNone Requ...
9.32008-03-11CVE-2007-1201NetworkMediumNone Requ...
102007-03-20CVE-2007-1512NetworkLowNone Requ...
9.32007-02-13CVE-2007-0025NetworkMediumNone Requ...
7.62006-11-27CVE-2006-6133NetworkHighNone Requ...
6.82006-11-01CVE-2006-4704NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
28% (6)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
28% (6)CWE-94Failure to Control Generation of Code ('Code Injection')
19% (4)CWE-189Numeric Errors
9% (2)CWE-399Resource Management Errors
9% (2)CWE-264Permissions, Privileges, and Access Controls
Hide | Show 1 More...
%idName
4% (1)CWE-200Information Exposure

Oval Markup Language : Definitions

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:4307GDI+ JPEG Parsing Engine Buffer Overflow (VS.NET 2002)
oval:org.mitre.oval:def:4216GDI+ JPEG Parsing Engine Buffer Overflow (IE6)
oval:org.mitre.oval:def:4003GDI+ JPEG Parsing Engine Buffer Overflow (Windows XP)
oval:org.mitre.oval:def:3881GDI+ JPEG Parsing Engine Buffer Overflow (Office XP,SP2)
oval:org.mitre.oval:def:3810GDI+ JPEG Parsing Engine Buffer Overflow (Project 2003)
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:3320GDI+ JPEG Parsing Engine Buffer Overflow Microsoft Office Visio Pro 2003
oval:org.mitre.oval:def:3082GDI+ JPEG Parsing Engine Buffer Overflow (Visio Pro 2002)
oval:org.mitre.oval:def:3038GDI+ JPEG Parsing Engine Buffer Overflow (Project 2002,SP1)
oval:org.mitre.oval:def:2706GDI+ JPEG Parsing Engine Buffer Overflow (Office 2003)
oval:org.mitre.oval:def:1721GDI+ JPEG Parsing Engine Buffer Overflow (VS.NET 2003)
oval:org.mitre.oval:def:1105GDI+ JPEG Parsing Engine Buffer Overflow (Server 2003)
oval:org.mitre.oval:def:1157Crystal Reports Business Objects Directory Traversal
oval:org.mitre.oval:def:1538Win2K/XP,SP1 DDS Library Shape Control Buffer Overflow
oval:org.mitre.oval:def:1535Win2k,SP4 DDS Library Shape Control Buffer Overflow
oval:org.mitre.oval:def:1468WinXP,SP2 DDS Library Shape Control Buffer Overflow
oval:org.mitre.oval:def:1464Server 2003,SP1 DDS Library Shape Control Buffer Overflow
oval:org.mitre.oval:def:1454Server 2003 DDS Library Shape Control Buffer Overflow
oval:org.mitre.oval:def:1155WinXP,SP1 (64-bit) DDS Library Shape Control Buffer Overflow
oval:org.mitre.oval:def:288WMI Object Broker Vulnerability
oval:org.mitre.oval:def:2055Vulnerability in Crystal Reports for Microsoft Visual Studio Could Allow Remo...
oval:org.mitre.oval:def:157MFC Memory Corruption Vulnerability
oval:org.mitre.oval:def:5327Office Web Components DataSource Vulnerability
oval:org.mitre.oval:def:5794Masked Edit Control Memory Corruption Vulnerability
oval:org.mitre.oval:def:5894DataGrid Control Memory Corruption Vulnerability
oval:org.mitre.oval:def:5994FlexGrid Control Memory Corruption Vulnerability

Open Source Vulnerability Database (OSVDB)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
67674Microsft Visual Studio Path Subversion Arbitrary DLL Injection Code Execution
58869Microsoft Office Malformed Object Handling Memory Corruption Arbitrary Code E...
58868Microsoft Multiple Products GDI+ PNG Image Handling Integer Overflow
58867Microsoft Multiple Products GDI+ .NET API Code Execution Privilege Escalation
58866Microsoft Multiple Products GDI+ TIFF Image Handling Memory Corruption Arbitr...
Hide | Show 20 More...
idDescription
58865Microsoft Multiple Products GDI+ TIFF Image Handling Overflow
58864Microsoft Multiple Products GDI+ PNG Image Handling Heap Overflow
58863Microsoft Multiple Products GDI+ WMF Image Handling Overflow
58785Microsoft Windows MFC Component (MFC42u.dll) AfxOleSetEditMenu Function RTF M...
56915Microsoft Office Web Components OWC10.Spreadsheet ActiveX BorderAround() Meth...
56699Microsoft Visual Studio Active Template Library (ATL) String Manipulation Arb...
56698Microsoft Visual Studio Active Template Library (ATL) Data Stream Object Inst...
56696Microsoft Visual Studio Active Template Library (ATL) Headers VariantClear Co...
50581Microsoft Visual Basic Charts Control ActiveX (Mschrt20.ocx) Unspecified Memo...
50580Microsoft Visual Basic Animation ActiveX (mscomct2.ocx) AVI Parsing Memory Co...
50579Microsoft Visual Basic Hierarchical FlexGrid ActiveX (mshflxgd.ocx) Multiple ...
50578Microsoft Visual Basic FlexGrid ActiveX (msflxgrd.ocx) Unspecified Memory Cor...
50577Microsoft Visual Basic DataGrid ActiveX (msdatgrd.ocx) Unspecified Memory Cor...
47475Microsoft Visual Studio Masked Edit Control ActiveX (Msmask32.ocx) Mask Param...
42712Microsoft Office Web Components DataSource Page Handling Arbitrary Code Execu...
31887Microsoft MFC Component RTF OLE Object Memory Corruption Remote Code Execution
31704Business Objects Crystal Reports Unspecified RPT Processing Overflow
30155Microsoft Visual Studio WMI Object Broker ActiveX (WmiScriptUtils.dll) Unspec...
22332Microsoft Visual Studio UserControl Load Event Code Execution
19093Microsoft Design Tools msdds.dll COM Object Arbitrary Code Execution

Milw0rm Exploits

idDescription
2008-08-26Microsoft Visual Studio (Msmask32.ocx) ActiveX Remote BOF Exploit
2008-08-14Microsoft Visual Studio (Msmask32.ocx) ActiveX Remote BOF PoC

ExploitDB Exploits

idDescription
7431MS Visual Basic ActiveX Controls mscomct2.ocx Buffer Overflow PoC

Metasploit Exploits

idDescription
2006-04-11MS06-014 Microsoft Internet Explorer COM CreateObject Code Execution
2008-08-13Microsoft Visual Studio Mdmask32.ocx ActiveX Buffer Overflow

OpenVAS Exploits

idDescription
2011-04-13Name : Microsoft Foundation Class (MFC) Library Remote Code Execution Vulnerability ...
File : nvt/secpod_ms11-025.nasl
2010-09-29Name : Microsoft Visual Studio Insecure Library Loading Vulnerability
File : nvt/secpod_ms_visual_studio_insecure_lib_load_vuln.nasl
2010-03-16Name : FreeBSD Ports: openoffice.org
File : nvt/freebsd_openoffice.org.nasl
2009-12-04Name : MS Internet Explorer 'Style' Object Remote Code Execution Vulnerability
File : nvt/gb_ms_ie_style_object_remote_code_exec_vuln.nasl
2009-11-11Name : SLES11: Security update for IBM Java 1.6.0
File : nvt/sles11_java-1_6_0-ibm1.nasl
Hide | Show 7 More...
idDescription
2009-10-21Name : Microsoft Products GDI Plus Code Execution Vulnerabilities (957488)
File : nvt/secpod_ms09-062.nasl
2009-10-14Name : Microsoft Windows ATL COM Initialization Code Execution Vulnerability (973525)
File : nvt/secpod_ms09-055.nasl
2009-10-14Name : MS ATL ActiveX Controls for MS Office Could Allow Remote Code Execution (973965)
File : nvt/secpod_ms09-060.nasl
2009-08-14Name : Vulnerabilities in Microsoft ATL Could Allow Remote Code Execution (973908)
File : nvt/secpod_ms09-037.nasl
2009-08-03Name : Microsoft Visual Studio ATL Remote Code Execution Vulnerability (969706)
File : nvt/secpod_ms09-035.nasl
2009-07-18Name : Microsoft Office Web Components ActiveX Control Code Execution Vulnerability
File : nvt/gb_ms_office_web_compnts_actvx_code_exec_vuln.nasl
2009-03-15Name : Microsoft MS04-017 security check
File : nvt/remote-MS04-017.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2013-A-0135Microsoft GDI+ Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0039199
2013-B-0071Multiple Vulnerabilities in Microsoft .NET Framework and Silverlight
Severity : Category II - VMSKEY : V0039211
2011-B-0046Remote Code Execution Vulnerability in Microsoft Foundation Class (MFC) Library
Severity : Category II - VMSKEY : V0026512
2009-A-0097Multiple Vulnerabilities in Microsoft Active Template Library
Severity : Category II - VMSKEY : V0021756
2009-A-0099Multiple Vulnerabilities in Microsoft GDI+
Severity : Category I - VMSKEY : V0021759
Hide | Show 8 More...
idDescription
2009-A-0069Multiple Vulnerabilities in Microsoft Office Web Components
Severity : Category II - VMSKEY : V0019877
2009-A-0067Multiple Vulnerabilities in Microsoft Active Template Library
Severity : Category II - VMSKEY : V0019882
2009-B-0033Multiple Vulnerabilities in Visual Studio Active Template Library
Severity : Category II - VMSKEY : V0019798
2009-B-0009Microsoft Security Update of ActiveX Kill Bits
Severity : Category I - VMSKEY : V0018406
2008-A-0088Multiple Vulnerabilities in Microsoft Visual Basic 6.0
Severity : Category II - VMSKEY : V0017907
2008-A-0015Microsoft Office Web Components Remote Code Execution Vulnerabilities
Severity : Category II - VMSKEY : V0015760
2007-T-0038Microsoft Visual Studio Crystal Reports RPT File Vulnerability
Severity : Category II - VMSKEY : V0015099
2007-B-0004Microsoft Windows MFC Embedded OLE Object Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0013603

Snort® IPS/IDS

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2014-01-10WMIScriptUtils.WMIObjectBroker2.1 ActiveX CLSID unicode access
RuleID : 8370 - Type : WEB-ACTIVEX - Revision : 8
2014-01-10Microsoft Internet Explorer WMIScriptUtils.WMIObjectBroker2.1 ActiveX clsid a...
RuleID : 8369 - Type : BROWSER-PLUGINS - Revision : 14
2014-01-10Microsoft Office Data Source Control 9.0 ActiveX clsid unicode access
RuleID : 7871 - Type : WEB-ACTIVEX - Revision : 11
2014-01-10Microsoft Office Data Source Control 9.0 ActiveX clsid access
RuleID : 7870 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Multiple Products malformed PNG detected tEXt overflow attempt
RuleID : 6700 - Type : FILE-IMAGE - Revision : 19
Hide | Show 20 More...
DateDescription
2014-01-10Microsoft Internet Explorer WMI ASDI Extension ActiveX object access
RuleID : 4236 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer Helper Object for Java ActiveX object access
RuleID : 4235 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer MSVTDGridCtrl7 ActiveX object access
RuleID : 4234 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer Visual Database Tools Query Designer v7.0 ActiveX...
RuleID : 4233 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer SysTray Invoker ActiveX object access
RuleID : 4232 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer SysTray ActiveX object access
RuleID : 4231 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer Search Assistant UI ActiveX object access
RuleID : 4230 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer MSAPP Export Support for Office Access ActiveX ob...
RuleID : 4229 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Windows Start Menu ActiveX object access
RuleID : 4228 - Type : BROWSER-PLUGINS - Revision : 14
2014-01-10Microsoft Internet Explorer Network Connections ActiveX object access
RuleID : 4227 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer DocHost User Interface Handler ActiveX object access
RuleID : 4226 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer Repository ActiveX object access
RuleID : 4225 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer VideoPort ActiveX object access
RuleID : 4224 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer OpenCable Class ActiveX object access
RuleID : 4223 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer Outllib.dll ActiveX object access
RuleID : 4222 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer ProxyStub Dispatch ActiveX object access
RuleID : 4221 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Windows Network and Dial-Up Connections ActiveX object access
RuleID : 4220 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Windows Network Connections Tray ActiveX object access
RuleID : 4219 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Microsoft Windows Visual Basic WebClass ActiveX object access
RuleID : 4218 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Office Services on the Web Free/Busy ActiveX object access
RuleID : 4217 - Type : BROWSER-PLUGINS - Revision : 14

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2014-03-10Name : Arbitrary code can be executed on the remote host through the Microsoft GDI r...
File : smb_kb957488.nasl - Type : ACT_GATHER_INFO
2013-07-10Name : The .NET Framework install on the remote Windows host could allow arbitrary c...
File : smb_nt_ms13-052.nasl - Type : ACT_GATHER_INFO
2013-07-10Name : The Windows kernel on the remote host is affected by multiple vulnerabilities.
File : smb_nt_ms13-053.nasl - Type : ACT_GATHER_INFO
2013-07-10Name : The remote Windows host has a remote code execution vulnerability.
File : smb_nt_ms13-054.nasl - Type : ACT_GATHER_INFO
2011-04-13Name : Arbitrary code can be executed on the remote host through the Microsoft Found...
File : smb_nt_ms11-025.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2011-01-27Name : The remote SuSE 10 host is missing a security-related patch.
File : suse_flash-player-6386.nasl - Type : ACT_GATHER_INFO
2010-10-11Name : The remote SuSE 10 host is missing a security-related patch.
File : suse_java-1_5_0-ibm-6741.nasl - Type : ACT_GATHER_INFO
2010-03-01Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_c97d7a37223311df96dd001b2134ef46.nasl - Type : ACT_GATHER_INFO
2010-02-12Name : The remote Windows host has a program affected by multiple buffer overflows.
File : openoffice_32.nasl - Type : ACT_GATHER_INFO
2010-01-08Name : The remote SuSE 10 host is missing a security-related patch.
File : suse_java-1_5_0-ibm-6740.nasl - Type : ACT_GATHER_INFO
2009-12-27Name : The remote SuSE 9 host is missing a security-related patch.
File : suse9_12564.nasl - Type : ACT_GATHER_INFO
2009-12-08Name : Arbitrary code can be executed on the remote host through a web browser.
File : smb_nt_ms09-072.nasl - Type : ACT_GATHER_INFO
2009-11-05Name : The remote SuSE 11 host is missing one or more security updates.
File : suse_11_java-1_6_0-ibm-091102.nasl - Type : ACT_GATHER_INFO
2009-10-15Name : Arbitrary code can be executed on the remote host through the Microsoft GDI r...
File : smb_nt_ms09-062.nasl - Type : ACT_GATHER_INFO
2009-10-14Name : Arbitrary code can be executed on the remote host through Microsoft Office Ac...
File : smb_nt_ms09-060.nasl - Type : ACT_GATHER_INFO
2009-10-13Name : The remote Windows host has multiple ActiveX controls that are affected by mu...
File : smb_nt_ms09-055.nasl - Type : ACT_GATHER_INFO
2009-10-06Name : The remote SuSE system is missing the security patch flash-player-6387
File : suse_flash-player-6387.nasl - Type : ACT_GATHER_INFO
2009-09-24Name : The remote SuSE 11 host is missing a security update.
File : suse_11_flash-player-090731.nasl - Type : ACT_GATHER_INFO
2009-08-11Name : Arbitrary code can be executed on the remote host through Microsoft Active Te...
File : smb_nt_ms09-037.nasl - Type : ACT_GATHER_INFO
2009-08-11Name : Arbitrary code can be executed on the remote host through Microsoft Office We...
File : smb_nt_ms09-043.nasl - Type : ACT_GATHER_INFO
2009-08-05Name : The remote SuSE system is missing a security patch for flash-player
File : suse_11_1_flash-player-090731.nasl - Type : ACT_GATHER_INFO
2009-08-05Name : The remote SuSE system is missing a security patch for flash-player
File : suse_11_0_flash-player-090731.nasl - Type : ACT_GATHER_INFO
2009-07-30Name : Arbitrary code can be executed on the remote host through Microsoft Active Te...
File : smb_nt_ms09-035.nasl - Type : ACT_GATHER_INFO
2009-07-30Name : The remote Windows host contains a browser plugin that is affected by multipl...
File : flash_player_apsb09_10.nasl - Type : ACT_GATHER_INFO
2009-07-29Name : The remote Windows host contains an Internet Explorer plugin which uses a vul...
File : shockwave_player_apsb09_11.nasl - Type : ACT_GATHER_INFO