Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
msdia.dll in Microsoft Debug Interface Access (DIA) SDK, as distributed in Microsoft Visual Studio before 2013, does not properly validate an unspecified variable before use in calculating a dynamic-call address, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDB file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Debug Interface Access SDK SDK 输入验证漏洞
Vulnerability Description
Microsoft Debug Interface Access(DIA)SDK是美国微软(Microsoft)公司的一款调试器,它支持对源代码进行编译,并查看调试信息。 Microsoft Visual Studio 2012及之前版本的Microsoft DIA SDK中的msdia.dll文件存在安全漏洞,该漏洞源于程序在计算动态调用地址之前,没有正确验证变量。远程攻击者可借助特制的PDB文件利用该漏洞执行任意代码或造成拒绝服务(内存损坏)。
CVSS Information
N/A
Vulnerability Type
N/A