Microsoft's ASN.1 library contains a memory management error that could be exploited by a remote attacker to cause a denial-of-service situation, or execute arbitrary code.
Microsoft's ASN.1 library contains a memory management error, potentially a "double-free" condition. By sending a crafted request, an attacker may be able to exploit this vulnerability to corrupt memory or execute arbitrary code. This vulnerability affects the following systems:
Exploitation of this vulnerability may lead to a denial-of-service condition, or the ability to execute arbitrary code.
Apply a patch from the vendor
Thanks to Microsoft for reporting this vulnerability.
This document was written by Jason A Rafail.
|Date First Published:||2004-04-14|
|Date Last Updated:||2004-04-14 14:36 UTC|