PT-2006-2518 · Microsoft · Ildasm+2

Published

2006-03-30

Updated

2017-07-20

CVE-2006-1510

CVSS v2.0

4.0

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP SP2 Microsoft .NET 1.0 and 1.1 SDK

Description: A buffer overflow issue exists in the Microsoft Windows XP SP2 ntdll.dll system library, specifically in the calloc.c file, when utilized by the ILDASM disassembler in the Microsoft .NET 1.0 and 1.1 SDK. This could potentially allow user-assisted attackers to execute arbitrary code via a crafted .dll file containing a large static method.

Recommendations: For Microsoft Windows XP SP2, update the system to address the issue. For Microsoft .NET 1.0 and 1.1 SDK, avoid using the ILDASM disassembler with untrusted .dll files until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-1510

Affected Products

.Net Framework

Ildasm

Windows Xp

PT-2006-2518 · Microsoft · Ildasm+2

CVE-2006-1510

Related Identifiers

Affected Products

References · 10