Intrusion Prevention

MS.NET.Framework.PE.Loader.Buffer.Overflow

Description

This indicates an attack attempt against a buffer-overflow vulnerability in
Microsoft .NET Framework.
The vulnerability is caused by an error when the PE Loader service handles malicious user-supplied data. It allows a remote attacker to execute arbitrary code via sending a crafted web page.

Affected Products

Microsoft .NET Framework 2.0
Microsoft .NET Framework 1.1 SP1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.0 SP3
Microsoft .NET Framework 1.0 SP2
Microsoft .NET Framework 1.0 SP1
Microsoft .NET Framework 1.0

Impact

System Comprise: Remote attackers can gain control of the vulnerable system.

Recommended Actions

Apply the patch, available from the vendor's web site:
http://www.microsoft.com/technet/security/Bulletin/MS07-040.mspx

CVE References

CVE-2007-0041