Vulnerability Description
Buffer overflow in calloc.c in the Microsoft Windows XP SP2 ntdll.dll system library, when used by the ILDASM disassembler in the Microsoft .NET 1.0 and 1.1 SDK, might allow user-assisted attackers to execute arbitrary code via a crafted .dll file with a large static method.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | .Net Framework | 1.0 |
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044482.htmlExploitPatchVendor Advisory
- http://owasp.net/forums/234/showpost.aspxExploitPatch
- http://owasp.net/forums/257/showpost.aspxExploit
- http://secunia.com/advisories/19406ExploitPatchVendor Advisory
- http://www.securityfocus.com/bid/17243ExploitPatch
- http://www.vupen.com/english/advisories/2006/1113
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25439
- http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/044482.htmlExploitPatchVendor Advisory
- http://owasp.net/forums/234/showpost.aspxExploitPatch
- http://owasp.net/forums/257/showpost.aspxExploit
- http://secunia.com/advisories/19406ExploitPatchVendor Advisory
- http://www.securityfocus.com/bid/17243ExploitPatch
- http://www.vupen.com/english/advisories/2006/1113
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25439
FAQ
What is CVE-2006-1510?
CVE-2006-1510 is a vulnerability with a CVSS score of 4.0 (MEDIUM). Buffer overflow in calloc.c in the Microsoft Windows XP SP2 ntdll.dll system library, when used by the ILDASM disassembler in the Microsoft .NET 1.0 and 1.1 SDK, might allow user-assisted attackers to...
How severe is CVE-2006-1510?
CVE-2006-1510 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-1510?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft .Net Framework.