ASN.1 Multiple Integer Overflows (SMTP check)
Critical Nessus Plugin ID 12065
SynopsisThe remote host has multiple integer overflow vulnerabilities.
DescriptionThe remote Windows host has an ASN.1 library with multiple integer overflow vulnerabilities. These issues could lead to a heap-based buffer overflow. A remote attacker could exploit these issues to execute arbitrary code.
This particular check sent a malformed SMTP authorization packet and determined that the remote host is not patched.
SolutionMicrosoft has released a set of patches for Windows NT, 2000, XP, and 2003.