CVE-2006-0187

Name of the Vulnerable Software and Affected Versions Microsoft Visual Studio 2005

Description The issue allows user-assisted attackers to execute arbitrary code by tricking the user into opening a malicious Visual Studio project file. This is possible because Microsoft Visual Studio 2005 automatically executes code in the Load event of a user-defined control, specifically the UserControl1 Load function.

Recommendations For Microsoft Visual Studio 2005, avoid opening untrusted or malicious Visual Studio project files to minimize the risk of exploitation. As a temporary workaround, consider disabling the automatic execution of code in the Load event of user-defined controls until a patch is available.