Bugtraq ID:	27250
Class:	Boundary Condition Error
CVE:
Remote:	Yes
Local:	No
Published:	Jan 11 2008 12:00AM
Updated:	Jan 12 2008 01:09AM
Credit:	shinnai is credited with the discovery of this vulnerability.
Vulnerable:	Microsoft Visual InterDev 6.0
Not Vulnerable:

[discussion]
Microsoft Visual Interdev is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data.

Successfully exploiting this issue will allow an attacker to execute arbitrary code with the privileges of the user running the affected application. Failed exploit attempts will result in a denial-of-service condition.

This issue affects Microsoft Visual InterDev 6.0; other versions may also be affected.

[exploit]
The following exploit code is available:

• /data/vulnerabilities/exploits/27250.py

[solution]
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.

[references]
Microsoft Visual InterDev Homepage (Microsoft)