Microsoft Visual Studio CVE-2019-0546 Remote Code Execution Vulnerability

Bugtraq ID:	106391
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2019-0546
Remote:	Yes
Local:	No
Published:	Jan 08 2019 12:00AM
Updated:	Jan 08 2019 12:00AM
Credit:	Simon Zuckerbraun of Trend Micro Zero Day Initiative
Vulnerable:	Microsoft Visual Studio 2017 15.9
Not Vulnerable:

Microsoft Visual Studio CVE-2019-0546 Remote Code Execution Vulnerability

Microsoft Visual Studio is prone to a remote code-execution vulnerability.

An attacker can leverage this issue to execute arbitrary code in the context of the current-user. Failed exploit attempts will likely result in denial of service conditions.

Microsoft Visual Studio CVE-2019-0546 Remote Code Execution Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Microsoft Visual Studio CVE-2019-0546 Remote Code Execution Vulnerability

References:

• Microsoft Homepage (Microsoft)
  
• CVE-2019-0546 | Visual Studio Remote Code Execution Vulnerability (Microsoft)