• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Microsoft ASP.NET StateServer Cookie Handling Buffer Overflow Vulnerability

Solution:
A patch is available from Microsoft for .NET Framework 1.0 SP1. This fix will be included in SP2.

Microsoft has advised ensuring that VS.NET is closed prior to manually installing any available patch.

Patches available:


GOST 34.19-2001 Standard Implementation 1.0 SP1

• Microsoft Q322289
  To be applied to Microsoft .NET Framework 1.0 SP1.
  http://download.microsoft.com/download/NETFrameworkRedistributable/Pat ch/1/NT45XP/EN-US/NDP10_QFEM_Q322289_En.exe