• info
• discussion
• exploit
• solution
• references

Microsoft ASP.NET StateServer Cookie Handling Buffer Overflow Vulnerability

Solution:
A patch is available from Microsoft for .NET Framework 1.0 SP1. This fix will be included in SP2.

Microsoft has advised ensuring that VS.NET is closed prior to manually installing any available patch.

Patches available:


Microsoft .NET Framework 1.0 SP1

• Microsoft Q322289
  To be applied to Microsoft .NET Framework 1.0 SP1.
  http://download.microsoft.com/download/NETFrameworkRedistributable/Pat ch/1/NT45XP/EN-US/NDP10_QFEM_Q322289_En.exe