{"vuid":"VU#216324","idnumber":"216324","name":"Microsoft ASN.1 Library improperly decodes malformed ASN.1 length values","keywords":["Microsoft","Abstract Syntax Notation 1","ASN.1","buffer overflow","MSASN1.DLL","ASN1BERDecLength()","ASN1BERDecCheck()","DecMemAlloc()","MS04-007"],"overview":"The Microsoft ASN.1 Library improperly decodes malformed ASN.1 length values which could allow an unauthenticated, remote attacker to execute arbitrary code with SYSTEM privileges.","clean_desc":"Abstract Syntax Notation number One (ASN.1) is an international standard used to describe and transmit data packets between applications and across networks. There is a buffer overflow vulnerability in the Microsoft ASN.1 Library that could allow an unauthenticated, remote attacker to execute arbitrary code with SYSTEM privileges on the affected system.","impact":"An unauthenticated, remote attacker could execute arbitrary code with SYSTEM privileges.","resolution":"Apply Patch\nApply the patch (828028) referenced in Microsoft Security Bulletin MS04-007.","workarounds":"","sysaffected":"","thanks":"This vulnerability was reported by eEye Digital Security.","author":"This document was written by Damon Morda.","public":["http://www.microsoft.com/technet/security/bulletin/MS04-007.asp","http://support.microsoft.com/default.aspx?scid=252648","http://www.eeye.com/html/Research/Advisories/AD20040210.html","http://www.itu.int/ITU-T/asn1/","http://www.asn1.org/"],"cveids":["CVE-2003-0818"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2004-02-10T18:24:37Z","publicdate":"2004-02-10T00:00:00Z","datefirstpublished":"2004-02-10T19:15:36Z","dateupdated":"2004-02-11T15:38:13Z","revision":20,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"15","cam_exploitation":"0","cam_internetinfrastructure":"16","cam_population":"15","cam_impact":"17","cam_easeofexploitation":"11","cam_attackeraccessrequired":"17","cam_scorecurrent":"27.71690625","cam_scorecurrentwidelyknown":"32.187375","cam_scorecurrentwidelyknownexploited":"50.06925","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":27.71690625,"vulnote":null}