This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:microsoft:visual_studio_.net
Detail
VendorMicrosoftFirst view 2004-08-06
ProductVisual Studio .NetLast view2013-07-09
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

CPE NameAffected CVE
cpe:/a:microsoft:visual_studio_.net:2003:sp122
cpe:/a:microsoft:visual_studio_.net:2002:sp19
cpe:/a:microsoft:visual_studio_.net:2005:sp18
cpe:/a:microsoft:visual_studio_.net:2003:gold5
cpe:/a:microsoft:visual_studio_.net:2002:gold3
Hide | Show 11 More...
CPE NameAffected CVE
cpe:/a:microsoft:visual_studio_.net:20053
cpe:/a:microsoft:visual_studio_.net:2000:sp11
cpe:/a:microsoft:visual_studio_.net:20001
cpe:/a:microsoft:visual_studio_.net:20021
cpe:/a:microsoft:visual_studio_.net:20031
cpe:/a:microsoft:visual_studio_.net:2003::enterprise_architect1
cpe:/a:microsoft:visual_studio_.net:gold::academic1
cpe:/a:microsoft:visual_studio_.net:gold::trial1
cpe:/a:microsoft:visual_studio_.net:gold::enterprise_developer1
cpe:/a:microsoft:visual_studio_.net:gold::enterprise_architect1
cpe:/a:microsoft:visual_studio_.net:gold::professional1

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
9.32013-07-09CVE-2013-3129NetworkMediumNone Requ...
9.32010-08-31CVE-2010-3190NetworkMediumNone Requ...
9.32009-10-14CVE-2009-3126NetworkMediumNone Requ...
9.32009-10-14CVE-2009-2528NetworkMediumNone Requ...
9.32009-10-14CVE-2009-2504NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
9.32009-10-14CVE-2009-2503NetworkMediumNone Requ...
9.32009-10-14CVE-2009-2502NetworkMediumNone Requ...
9.32009-10-14CVE-2009-2501NetworkMediumNone Requ...
9.32009-10-14CVE-2009-2500NetworkMediumNone Requ...
9.32009-08-12CVE-2009-2496NetworkMediumNone Requ...
9.32009-08-12CVE-2009-1534NetworkMediumNone Requ...
7.82009-07-29CVE-2009-2495NetworkLowNone Requ...
9.32009-07-29CVE-2009-0901NetworkMediumNone Requ...
8.52008-12-10CVE-2008-4256NetworkMediumRequires ...
9.32008-12-10CVE-2008-4255NetworkMediumNone Requ...
8.52008-12-10CVE-2008-4254NetworkMediumRequires ...
8.52008-12-10CVE-2008-4253NetworkMediumRequires ...
8.52008-12-10CVE-2008-4252NetworkMediumRequires ...
9.32008-08-18CVE-2008-3704NetworkMediumNone Requ...
9.32008-03-11CVE-2007-1201NetworkMediumNone Requ...
102007-03-20CVE-2007-1512NetworkLowNone Requ...
9.32007-02-13CVE-2007-0025NetworkMediumNone Requ...
7.62006-11-27CVE-2006-6133NetworkHighNone Requ...
6.82006-11-01CVE-2006-4704NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
31% (7)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
27% (6)CWE-94Failure to Control Generation of Code ('Code Injection')
18% (4)CWE-189Numeric Errors
9% (2)CWE-399Resource Management Errors
9% (2)CWE-264Permissions, Privileges, and Access Controls
Hide | Show 1 More...
%idName
4% (1)CWE-200Information Exposure

SAINT Exploits

DescriptionLink
Microsoft Visual Studio MaskedEdit ActiveX buffer overflowMore info here
Microsoft Visual Studio 2005 WMI Object Broker vulnerabilityMore info here
Microsoft Office Web Components OWC.Spreadsheet.9 HTMLURL property overflowMore info here
Visual Studio Active Template Library uninitialized objectMore info here
Microsoft Office Web Components OWC.Spreadsheet BorderAround vulnerabilityMore info here
Hide | Show 1 More...
DescriptionLink
Microsoft Office Art Property Table Memory CorruptionMore info here

Open Source Vulnerability Database (OSVDB)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
67674Microsft Visual Studio Path Subversion Arbitrary DLL Injection Code Execution
58869Microsoft Office Malformed Object Handling Memory Corruption Arbitrary Code E...
58868Microsoft Multiple Products GDI+ PNG Image Handling Integer Overflow
58867Microsoft Multiple Products GDI+ .NET API Code Execution Privilege Escalation
58866Microsoft Multiple Products GDI+ TIFF Image Handling Memory Corruption Arbitr...
Hide | Show 20 More...
idDescription
58865Microsoft Multiple Products GDI+ TIFF Image Handling Overflow
58864Microsoft Multiple Products GDI+ PNG Image Handling Heap Overflow
58863Microsoft Multiple Products GDI+ WMF Image Handling Overflow
58785Microsoft Windows MFC Component (MFC42u.dll) AfxOleSetEditMenu Function RTF M...
56916Microsoft Office Web Components HTMLURL Parameter ActiveX Spreadsheet Object ...
56915Microsoft Office Web Components OWC10.Spreadsheet ActiveX BorderAround() Meth...
56699Microsoft Visual Studio Active Template Library (ATL) String Manipulation Arb...
56696Microsoft Visual Studio Active Template Library (ATL) Headers VariantClear Co...
50581Microsoft Visual Basic Charts Control ActiveX (Mschrt20.ocx) Unspecified Memo...
50580Microsoft Visual Basic Animation ActiveX (mscomct2.ocx) AVI Parsing Memory Co...
50579Microsoft Visual Basic Hierarchical FlexGrid ActiveX (mshflxgd.ocx) Multiple ...
50578Microsoft Visual Basic FlexGrid ActiveX (msflxgrd.ocx) Unspecified Memory Cor...
50577Microsoft Visual Basic DataGrid ActiveX (msdatgrd.ocx) Unspecified Memory Cor...
47475Microsoft Visual Studio Masked Edit Control ActiveX (Msmask32.ocx) Mask Param...
42712Microsoft Office Web Components DataSource Page Handling Arbitrary Code Execu...
31887Microsoft MFC Component RTF OLE Object Memory Corruption Remote Code Execution
31704Business Objects Crystal Reports Unspecified RPT Processing Overflow
30155Microsoft Visual Studio WMI Object Broker ActiveX (WmiScriptUtils.dll) Unspec...
22332Microsoft Visual Studio UserControl Load Event Code Execution
19093Microsoft Design Tools msdds.dll COM Object Arbitrary Code Execution

Milw0rm Exploits

idDescription
2008-08-26Microsoft Visual Studio (Msmask32.ocx) ActiveX Remote BOF Exploit
2008-08-14Microsoft Visual Studio (Msmask32.ocx) ActiveX Remote BOF PoC

ExploitDB Exploits

idDescription
7431Microsoft Visual Basic ActiveX Controls mscomct2.ocx Buffer Overflow PoC

OpenVAS Exploits

idDescription
2011-04-13Name : Microsoft Foundation Class (MFC) Library Remote Code Execution Vulnerability ...
File : nvt/secpod_ms11-025.nasl
2010-09-29Name : Microsoft Visual Studio Insecure Library Loading Vulnerability
File : nvt/secpod_ms_visual_studio_insecure_lib_load_vuln.nasl
2009-10-21Name : Microsoft Products GDI Plus Code Execution Vulnerabilities (957488)
File : nvt/secpod_ms09-062.nasl
2009-10-14Name : MS ATL ActiveX Controls for MS Office Could Allow Remote Code Execution (973965)
File : nvt/secpod_ms09-060.nasl
2009-08-14Name : Vulnerabilities in Microsoft ATL Could Allow Remote Code Execution (973908)
File : nvt/secpod_ms09-037.nasl
Hide | Show 3 More...
idDescription
2009-08-03Name : Microsoft Visual Studio ATL Remote Code Execution Vulnerability (969706)
File : nvt/secpod_ms09-035.nasl
2009-07-18Name : Microsoft Office Web Components ActiveX Control Code Execution Vulnerability
File : nvt/gb_ms_office_web_compnts_actvx_code_exec_vuln.nasl
2009-03-15Name : Microsoft MS04-017 security check
File : nvt/remote-MS04-017.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2013-A-0135Microsoft GDI+ Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0039199
2013-B-0071Multiple Vulnerabilities in Microsoft .NET Framework and Silverlight
Severity : Category II - VMSKEY : V0039211
2011-B-0046Remote Code Execution Vulnerability in Microsoft Foundation Class (MFC) Library
Severity : Category II - VMSKEY : V0026512
2009-A-0097Multiple Vulnerabilities in Microsoft Active Template Library
Severity : Category II - VMSKEY : V0021756
2009-A-0099Multiple Vulnerabilities in Microsoft GDI+
Severity : Category I - VMSKEY : V0021759
Hide | Show 8 More...
idDescription
2009-A-0069Multiple Vulnerabilities in Microsoft Office Web Components
Severity : Category II - VMSKEY : V0019877
2009-A-0067Multiple Vulnerabilities in Microsoft Active Template Library
Severity : Category II - VMSKEY : V0019882
2009-B-0033Multiple Vulnerabilities in Visual Studio Active Template Library
Severity : Category II - VMSKEY : V0019798
2009-B-0009Microsoft Security Update of ActiveX Kill Bits
Severity : Category I - VMSKEY : V0018406
2008-A-0088Multiple Vulnerabilities in Microsoft Visual Basic 6.0
Severity : Category II - VMSKEY : V0017907
2008-A-0015Microsoft Office Web Components Remote Code Execution Vulnerabilities
Severity : Category II - VMSKEY : V0015760
2007-T-0038Microsoft Visual Studio Crystal Reports RPT File Vulnerability
Severity : Category II - VMSKEY : V0015099
2007-B-0004Microsoft Windows MFC Embedded OLE Object Remote Code Execution Vulnerability
Severity : Category II - VMSKEY : V0013603

Snort® IPS/IDS

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2014-01-10WMIScriptUtils.WMIObjectBroker2.1 ActiveX CLSID unicode access
RuleID : 8370 - Type : WEB-ACTIVEX - Revision : 8
2014-01-10Microsoft Internet Explorer WMIScriptUtils.WMIObjectBroker2.1 ActiveX clsid a...
RuleID : 8369 - Type : BROWSER-PLUGINS - Revision : 18
2014-01-10Microsoft Office Data Source Control 9.0 ActiveX clsid unicode access
RuleID : 7871 - Type : WEB-ACTIVEX - Revision : 11
2014-01-10Microsoft Office Data Source Control 9.0 ActiveX clsid access
RuleID : 7870 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Multiple Products malformed PNG detected tEXt overflow attempt
RuleID : 6700 - Type : FILE-IMAGE - Revision : 20
Hide | Show 20 More...
DateDescription
2014-01-10Microsoft Internet Explorer WMI ASDI Extension ActiveX object access
RuleID : 4236 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer Helper Object for Java ActiveX object access
RuleID : 4235 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer MSVTDGridCtrl7 ActiveX object access
RuleID : 4234 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer Visual Database Tools Query Designer v7.0 ActiveX...
RuleID : 4233 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer SysTray Invoker ActiveX object access
RuleID : 4232 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer SysTray ActiveX object access
RuleID : 4231 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer Search Assistant UI ActiveX object access
RuleID : 4230 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer MSAPP Export Support for Office Access ActiveX ob...
RuleID : 4229 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Windows Start Menu ActiveX object access
RuleID : 4228 - Type : BROWSER-PLUGINS - Revision : 14
2014-01-10Microsoft Internet Explorer Network Connections ActiveX object access
RuleID : 4227 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer DocHost User Interface Handler ActiveX object access
RuleID : 4226 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer Repository ActiveX object access
RuleID : 4225 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer VideoPort ActiveX object access
RuleID : 4224 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer OpenCable Class ActiveX object access
RuleID : 4223 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer Outllib.dll ActiveX object access
RuleID : 4222 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Internet Explorer ProxyStub Dispatch ActiveX object access
RuleID : 4221 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Windows Network and Dial-Up Connections ActiveX object access
RuleID : 4220 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Windows Network Connections Tray ActiveX object access
RuleID : 4219 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Microsoft Windows Visual Basic WebClass ActiveX object access
RuleID : 4218 - Type : BROWSER-PLUGINS - Revision : 15
2014-01-10Microsoft Office Services on the Web Free/Busy ActiveX object access
RuleID : 4217 - Type : BROWSER-PLUGINS - Revision : 14

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2015-10-26Name : The remote host contains an application that is affected by multiple vulnerab...
File : itunes_12_3_0_banner.nasl - Type : ACT_GATHER_INFO
2015-09-18Name : The remote host contains an application that is affected by multiple vulnerab...
File : itunes_12_3_0.nasl - Type : ACT_GATHER_INFO
2014-03-10Name : Arbitrary code can be executed on the remote host through the Microsoft GDI r...
File : smb_kb957488.nasl - Type : ACT_GATHER_INFO
2013-07-10Name : The .NET Framework install on the remote Windows host could allow arbitrary c...
File : smb_nt_ms13-052.nasl - Type : ACT_GATHER_INFO
2013-07-10Name : The Windows kernel on the remote host is affected by multiple vulnerabilities.
File : smb_nt_ms13-053.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2013-07-10Name : The remote Windows host has a remote code execution vulnerability.
File : smb_nt_ms13-054.nasl - Type : ACT_GATHER_INFO
2011-04-13Name : Arbitrary code can be executed on the remote host through the Microsoft Found...
File : smb_nt_ms11-025.nasl - Type : ACT_GATHER_INFO
2011-01-27Name : The remote SuSE 10 host is missing a security-related patch.
File : suse_flash-player-6386.nasl - Type : ACT_GATHER_INFO
2009-10-15Name : Arbitrary code can be executed on the remote host through the Microsoft GDI r...
File : smb_nt_ms09-062.nasl - Type : ACT_GATHER_INFO
2009-10-14Name : Arbitrary code can be executed on the remote host through Microsoft Office Ac...
File : smb_nt_ms09-060.nasl - Type : ACT_GATHER_INFO
2009-10-06Name : The remote openSUSE host is missing a security update.
File : suse_flash-player-6387.nasl - Type : ACT_GATHER_INFO
2009-09-24Name : The remote SuSE 11 host is missing a security update.
File : suse_11_flash-player-090731.nasl - Type : ACT_GATHER_INFO
2009-08-11Name : Arbitrary code can be executed on the remote host through Microsoft Active Te...
File : smb_nt_ms09-037.nasl - Type : ACT_GATHER_INFO
2009-08-11Name : Arbitrary code can be executed on the remote host through Microsoft Office We...
File : smb_nt_ms09-043.nasl - Type : ACT_GATHER_INFO
2009-08-05Name : The remote openSUSE host is missing a security update.
File : suse_11_1_flash-player-090731.nasl - Type : ACT_GATHER_INFO
2009-08-05Name : The remote openSUSE host is missing a security update.
File : suse_11_0_flash-player-090731.nasl - Type : ACT_GATHER_INFO
2009-07-30Name : Arbitrary code can be executed on the remote host through Microsoft Active Te...
File : smb_nt_ms09-035.nasl - Type : ACT_GATHER_INFO
2009-07-30Name : The remote Windows host contains a browser plugin that is affected by multipl...
File : flash_player_apsb09_10.nasl - Type : ACT_GATHER_INFO
2009-07-29Name : The remote Windows host contains an Internet Explorer plugin which uses a vul...
File : shockwave_player_apsb09_11.nasl - Type : ACT_GATHER_INFO
2009-02-11Name : The remote Windows host is missing a security update containing ActiveX kill ...
File : smb_kb_960715.nasl - Type : ACT_GATHER_INFO
2008-12-10Name : Arbitrary code can be executed on the remote host through the web client.
File : smb_nt_ms08-070.nasl - Type : ACT_GATHER_INFO
2008-03-11Name : Arbitrary code can be executed on the remote host through Microsoft Office We...
File : smb_nt_ms08-017.nasl - Type : ACT_GATHER_INFO
2007-09-12Name : Arbitrary code can be executed on the remote host through Visual Studio.
File : smb_nt_ms07-052.nasl - Type : ACT_GATHER_INFO
2007-02-13Name : Arbitrary code can be executed on the remote host through the MFC component p...
File : smb_nt_ms07-012.nasl - Type : ACT_GATHER_INFO
2006-12-12Name : Arbitrary code can be executed on the remote host through the web browser.
File : smb_nt_ms06-073.nasl - Type : ACT_GATHER_INFO