Description
By design, Microsoft Visual Studio 2005 automatically executes code in the Load event of a user-defined control (UserControl1_Load function), which allows user-assisted attackers to execute arbitrary code by tricking the user into opening a malicious Visual Studio project file.
Exploits (2)
exploitdb
WRITEUP
VERIFIED
by priestmaster · textremotewindows
https://www.exploit-db.com/exploits/27073
exploitdb
WORKING POC
VERIFIED
by anonymous · perlremotewindows
https://www.exploit-db.com/exploits/27072
References (5)
Scores
EPSS
0.3740
EPSS Percentile
97.2%
Details
Status
published
Products (1)
microsoft/visual_studio_.net
2005
Published
Jan 12, 2006
Tracked Since
Feb 18, 2026