A stack buffer overflow vulnerability exists in Visual Studio which causes remote code execution.
The vulnerability exists on the way it handles database project files (.dbp) and solution files (.sln).
For now, just to be safe, don’t open any downloaded .dbp or .sln files unless you’re really sure that the source can be trusted.
