CVE-2006-1510

Опубликовано: 30 мар. 2006

Источник: nvd

CVSS2: 4

EPSS Средний

Описание

Buffer overflow in calloc.c in the Microsoft Windows XP SP2 ntdll.dll system library, when used by the ILDASM disassembler in the Microsoft .NET 1.0 and 1.1 SDK, might allow user-assisted attackers to execute arbitrary code via a crafted .dll file with a large static method.

Ссылки

http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044482.html
Exploit
Patch
Vendor Advisory
http://owasp.net/forums/234/showpost.aspx
Exploit
Patch
http://owasp.net/forums/257/showpost.aspx
Exploit
http://secunia.com/advisories/19406
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/bid/17243
Exploit
Patch
http://www.vupen.com/english/advisories/2006/1113
https://exchange.xforce.ibmcloud.com/vulnerabilities/25439
http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044482.html
Exploit
Patch
Vendor Advisory
http://owasp.net/forums/234/showpost.aspx
Exploit
Patch
http://owasp.net/forums/257/showpost.aspx
Exploit
http://secunia.com/advisories/19406
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/bid/17243
Exploit
Patch
http://www.vupen.com/english/advisories/2006/1113
https://exchange.xforce.ibmcloud.com/vulnerabilities/25439

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:.net_framework:1.0:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:.net_framework:1.0:sp1:sdk:*:*:*:*:*

cpe:2.3:a:microsoft:.net_framework:1.0:sp2:sdk:*:*:*:*:*

cpe:2.3:a:microsoft:.net_framework:1.1:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:.net_framework:1.1:sp1:sdk:*:*:*:*:*

EPSS

Процентиль: 95%

0.1696

Средний

4 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-xm6q-6v7q-65qv

github

почти 4 года назад