Skip to main content

Microsoft Visual Studio Add-In Vulnerability

Last Update Date: 14 Mar 2012 12:18 Release Date: 14 Mar 2012 5714 Views

RISK: Medium Risk

TYPE: Operating Systems - Application Platforms

TYPE: Application Platforms

An elevation of privilege vulnerability exists in Visual Studio due to the insecure loading of add-ins from within Visual Studio. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.


Impact

  • Elevation of Privilege

System / Technologies affected

  • Microsoft Visual Studio 2008
  • Microsoft Visual Studio 2010

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.


Vulnerability Identifier


Source


Related Link