msdia.dll in Microsoft Debug Interface Access (DIA) SDK, as distributed in Microsoft Visual Studio prior to 2013, does not properly validate an unspecified variable before use in calculating a dynamic-call address, which allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDB file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft visual studio 2003 |
||
microsoft visual studio 2005 |
||
microsoft visual studio 2010 |
||
microsoft visual studio 2002 |
||
microsoft debug interface access software development kit - |
||
microsoft visual studio |