Security Advisories
MS ASN.1 Buffer Overflow Vulnerabilities
February 11, 2004
Uma vulnerabilidade altamente crítica foi anunciada hoje pela Microsoft que afeta bibliotecas que são usadas para processar dados codificados da ASN.1. A ASN.1 é o padrão que define a maneira na qual os dados em certificados digital são codificados. Cada aplicação que faz uso do MSASN1.DLL ou CRYPT32.DLL (para mauseio de certificados digitais) é considerada […]
MS ASN.1 Buffer Overflow Vulnerabilities
February 2, 2004
A high critical vulnerability was announced today by Microsoft that affect libraries which are used to process ASN.1 encoded data. ASN.1 is the standard which defines how data in digital certificates is encoded. Every application that makes use of MSASN1.DLL or CRYPT32.DLL (for digital certificates handling) is considered to be vulnerable. Some of it includes: […]
MDAC Hole Not Widespread on IIS Servers
December 3, 2003
UK Internet research firm Netcraft has released its latest web server survey for November 2002, with some interesting observations on the pervasiveness of the recently discovered MDAC vulnerability on IIS servers. Assessments by Foundstone, the security company that discovered the hole, and Microsoft had claimed millions of systems might be affected, prompting fears of attacks […]
« Older Entries Newer Entries »
