Microsoft Visual Studio Add-In Vulnerability
Last Update Date:
14 Mar 2012 12:18
Release Date:
14 Mar 2012
5714
Views
RISK: Medium Risk
TYPE: Operating Systems - Application Platforms
An elevation of privilege vulnerability exists in Visual Studio due to the insecure loading of add-ins from within Visual Studio. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Impact
- Elevation of Privilege
System / Technologies affected
- Microsoft Visual Studio 2008
- Microsoft Visual Studio 2010
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Download location for patches:
http://technet.microsoft.com/en-us/security/bulletin/ms12-021
Vulnerability Identifier
Source
Related Link
Share with