CVE-2006-1510

Sažetak

Buffer overflow in calloc.c in the Microsoft Windows XP SP2 ntdll.dll system library, when used by the ILDASM disassembler in the Microsoft .NET 1.0 and 1.1 SDK, might allow user-assisted attackers to execute arbitrary code via a crafted .dll file with a large static method.

Reference

http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044482.html
http://owasp.net/forums/234/showpost.aspx
http://owasp.net/forums/257/showpost.aspx
http://secunia.com/advisories/19406
http://www.securityfocus.com/bid/17243
http://www.vupen.com/english/advisories/2006/1113
https://exchange.xforce.ibmcloud.com/vulnerabilities/25439

CVSS

Base:	4.0
Impact:	2.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:L/Au:S/C:N/I:P/A:N

Zadnje važnije ažuriranje

20-07-2017 - 01:30

Objavljeno

30-03-2006 - 01:06