Skip navigation
Menu
Software Development>Programming Languages

Unchecked Buffer in ASP.NET Component of Microsoft .NET 1.0

Reported June 6, 2002, by Microsoft.

VERSION AFFECTED

 

·         Microsoft ASP.NET component of the Microsoft .NET Framework 1.0

 

DESCRIPTION

A vulnerability exists in the ASP.NET component of the Microsoft .NET Framework 1.0 that can result in a Denial of Service (DoS) condition or execution of arbitrary code on the vulnerable system. This vulnerability stems from an unchecked buffer in a routine that handles cookie processing in the StateServer mode. StateServer mode, however, is not the default session state mode for session management. This vulnerability is present only when the vulnerable system is using StateServer mode in conjunction with cookies.

VENDOR RESPONSE

The vendor, Microsoft, has released Security Bulletin MS02-026 to address this vulnerability and recommends that affected users apply the appropriate patch listed in the bulletin.

 

CREDIT
Discovered by Microsoft.

TAGS: Security
Hide comments

More information about text formats

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish
Recommended Reading
reticulated python
How to Run Python in RStudio Using the Reticulate Library in R
Mar 27, 2024
Java logo on a laptop screen
Java 22 Brings Developers Better Usability, Promise of Simplification
Mar 20, 2024
javascript written on building block in wall of wooden blocks
JavaScript Reference Guide: A Beginner's Introduction to Pure JavaScript
Mar 14, 2024
YAML inscription against a laptop and code background
Mastering YAML: How the Programming Language Can Benefit IT Pros
Mar 11, 2024