Lucene search

[email protected]CVE-2006-1510

HistoryMar 30, 2006 - 1:06 a.m.

CVE-2006-1510

2006-03-3001:06:00

[email protected]

web.nvd.nist.gov

cve-2006-1510

buffer overflow

ntdll.dll

windows xp

sp2

ildasm disassembler

.net sdk

arbitrary code execution

user-assisted

nvd

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

7.6 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

79.3%

JSON

Buffer overflow in calloc.c in the Microsoft Windows XP SP2 ntdll.dll system library, when used by the ILDASM disassembler in the Microsoft .NET 1.0 and 1.1 SDK, might allow user-assisted attackers to execute arbitrary code via a crafted .dll file with a large static method.

Affected configurations

NVD

Node

microsoft.net_frameworkMatch1.0

microsoft.net_frameworkMatch1.0sp1sdk

microsoft.net_frameworkMatch1.0sp2sdk

microsoft.net_frameworkMatch1.1

microsoft.net_frameworkMatch1.1sp1sdk

CPENameOperatorVersion
microsoft:.net_frameworkmicrosoft .net frameworkeq1.0
microsoft:.net_frameworkmicrosoft .net frameworkeq1.1

CPE	Name	Operator	Version
microsoft:.net_framework	microsoft .net framework	eq	1.0
microsoft:.net_framework	microsoft .net framework	eq	1.1

References

lists.grok.org.uk/pipermail/full-disclosure/2006-March/044482.html

owasp.net/forums/234/showpost.aspx

owasp.net/forums/257/showpost.aspx

secunia.com/advisories/19406

www.securityfocus.com/bid/17243

www.vupen.com/english/advisories/2006/1113

exchange.xforce.ibmcloud.com/vulnerabilities/25439

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

7.6 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

79.3%

JSON

Related for CVE-2006-1510

cvelist1 nvd1 prion1