Microsoft .NET Framework SDK ildasm Buffer Overflow - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

Microsoft .NET Framework SDK ildasm Buffer Overflow

Secunia Advisory:	SA19406
Release Date:	2006-03-27
Last Update:	2006-04-03

Critical:	Moderately critical
Impact:	DoS System access
Where:	From remote
Solution Status:	Unpatched

Software:	Microsoft .NET Framework 1.x

CVE reference:	CVE-2006-1510 (Secunia mirror) CVE-2006-1511 (Secunia mirror)

	This advisory is currently marked as unpatched! - Companies can be alerted when a patch is released!

Description: A vulnerability has been discovered in Microsoft .NET Framework SDK, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially compromise a user's system. The vulnerability is caused due to a boundary error within ildasm when disassembling a DLL file. This can be exploited to cause a heap-based buffer overflow when a specially crafted DLL is disassembled. The vulnerability has been confirmed in version 1.1 with SP1. Other versions may also be affected. NOTE: It has also been reported that assembling a (.il) file containing a call to a function with an overly long method name using "ilasm" will cause a buffer overflow. Solution: Do not use ildasm to disassemble untrusted DLL files. Provided and/or discovered by: Dinis Cruz and Kerem Kusmezer Changelog: 2006-04-03: Added CVE references. Original Advisory: http://owasp.net/forums/257/showpost.aspx http://owasp.net/forums/234/showpost.aspx



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

7 Related Secunia Security Advisories

1. Microsoft .NET Framework Multiple Vulnerabilities

2. ASP.NET RCP/encoded Mode Denial of Service Vulnerability

3. Microsoft ASP.NET Unicode Conversion Cross-Site Scripting

4. Microsoft .NET Framework URL Path Validation Canonicalization Vulnerability

5. Microsoft Multiple Products JPEG Processing Buffer Overflow Vulnerability

6. Multiple Vendor SOAP Server DTD Parameter Denial of Service

7. Multiple Vendor SOAP Server XML Parser Denial of Service

Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	OpenOffice "rtl_allocateMe mory()" Truncation Vulnerability

2.	JustSystems Ichitaro Products Unspecified Code Execution Vulnerability

3.	Honeyd "test.sh" Insecure Temporary Files

4.	Red Hat Directory Server Multiple Vulnerabilities

5.	HP-UX update for Apache

6.	Tiger "genmsgidx" Insecure Temporary Files

7.	Ampache "gather-message s.sh" Insecure Temporary Files

8.	Red Hat update for tomcat

9.	Red Hat Directory Server Denial of Service Vulnerabilities

10.	Red Hat update for adminutil