Threat Encyclopedia

MS.NET.Framework.AllocHGlobal.Integer.Overflow

description-logoDescription

This indicates an attack attempt to exploit an Integer Overflow vulnerability in Microsoft .Net Framework.
The vulnerability is due to improper bound checking when the vulnerable software handles maliciously crafted packets. An attacker can exploit this to cause denial of services conditions within the affected application.

affected-products-logoAffected Products

Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 4
Microsoft .NET Framework 4.5/4.5.1/4.5.2
Microsoft .NET Framework 4.6
Microsoft .NET Framework 3.5.1
Microsoft .NET Framework 3.5

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
http://technet.microsoft.com/security/bulletin/MS15-101

CVE References

CVE-2015-2504