« Oracle Application Server 9i and RDBMS Multiple SQL Injection Vulnerabilities | Main | New Approach to .NET obfuscation »

Microsoft Frontpage Overflow

First off sorry for the lag on site updates. I'll be gone all next week and I've been busy.

A chunked encoding overflow has been discovered in fp30reg.dll which can allow a remote attacker to execute commands. More importantly this took 11 months to get fixed. Rele vant information from the advisory.

"Public disclosure on November 11, 2003"
"Discovered and advised to Microsoft January 30, 2003 by Brett Moore of Security-Assessment.com"

Microsoft Security Bulletin MS03-051

Comments

Feed You can follow this conversation by subscribing to the comment feed for this post.


All Comments are Moderated and will be delayed!