• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Focus On: Vista
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns

• info
• discussion
• exploit
• solution
• references

Microsoft ASN.1 Library Multiple Stack-Based Buffer Overflow Vulnerabilities

Solution:
The first issue described in this BID concerning the ASN1BERDecDouble function is reportedly fixed in Microsoft Windows 2000 SP4. The issue in the ASN1PERDecDouble function has allegedly been fixed with the updates provided in MS04-007. This information was provided in the report, however, it has not been verified by Symantec.