[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption

To: full-disclosure@lists.netsys.com
Subject: Re: [Full-Disclosure] EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption
From: Philippe <philippe.letrait@laposte.net>
Date: Wed, 11 Feb 2004 10:02:17 +0100

Note that nessus or retina should (not tested) detect remotely that flaw.

See nessus pluging source for exploit ;-):
- http://cgi.nessus.org/plugins/dump.php3?id=12052

Or update your security scanners
- http://www.nessus.org
- http://www.eeye.com/html/Products/Retina/index.html

Hope this helps
Regards

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption
  - From: Joao Gouveia <tharbad@kaotik.org>
- Re: [Full-Disclosure] EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption
  - From: jeremy@austin.ibm.com

Prev by Date: RE: [Full-Disclosure] Apparently the practice was prevalent
Next by Date: Re: [Full-Disclosure] EEYE: Microsoft ASN.1 Library Bit String Heap Corruption
Previous by thread: Re: [Full-Disclosure] EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption
Next by thread: Re: [Full-Disclosure] EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption
Index(es):
- Date
- Thread