CVE-2007-0468

Name of the Vulnerable Software and Affected Versions Microsoft Visual Studio 6.0 SP6

Description The issue is related to a stack-based buffer overflow in the rcdll.dll component of msdev.exe in Microsoft Visual Studio. This occurs when a long file path is used in the "1 TYPELIB MOVEABLE PURE" option within an RC file, potentially allowing remote attackers to execute arbitrary code with user assistance.

Recommendations For Microsoft Visual Studio 6.0 SP6, consider avoiding the use of long file paths in the "1 TYPELIB MOVEABLE PURE" option in RC files until a fix is available. As a temporary workaround, restrict the handling of RC files with potentially long paths to minimize the risk of exploitation.