Click Here to Install Silverlight

United States

|

All Microsoft Sites

Download Center Home

Product Families

Business Solutions

Developer Tools

Download Categories

Windows Security & Updates

Mac & Other Platforms

Development Resources

Download Resources

Microsoft Update Services

Download Center FAQ

Download Notifications

Notifications Signup

Worldwide Downloads

Countries & Regions

Search

Advanced Search

Visual Studio 6.0 C Runtime Denial of Service Fix

Brief Description

Visual Studio 6.0 and Visual C++ 6.0 contain the Microsoft C runtime. This file contains a problem that could cause a buffer overrun. Unlike most buffer overruns, a malicious attacker could not choose the data with which the buffer would be overrun.

On This Page

System Requirements

Additional Information

Related Resources

Download files below

Quick Details

Version:	Q305601
Knowledge Base (KB) Articles:	KB305601
Date Published:	11/5/2001
Language:	English
Download Size:	538 KB - 1.0 MB*
*Download size depends on selected download components.

Change Language:

Overview

Visual Studio 6.0 and Visual C++ 6.0 contain the Microsoft C runtime. This file contains a problem that could cause a buffer overrun. Unlike most buffer overruns, a malicious attacker could not choose the data with which the buffer would be overrun. Instead, the buffer would always be overrun with the same values, regardless of the attacker's inputs. As a result, this vulnerability could be used as a denial of service attack only.

Due to the important nature of the C runtime to the operating system and most client software, it is recommended that this fix be applied directly to a server and not distributed with any applications that need the C runtime. The fix will appear in the next service pack for Visual Studio and Visual C++.

System Requirements

Supported Operating Systems: Windows 2000; Windows NT

Visual Studio 6.0 or Visual C++ 6.0

Instructions

Select the server version and language to download this update file. It will update the C runtime and eliminate this security problem.

Additional Information

Symptoms
A server application such as the Microsoft SQL Server™ service could be made to fail silently without warning.

Files in This Download

The links in this section correspond to separate files available in this download. Download the files most appropriate for you.

File Name:	File Size
Q305601_W2K_SP3_X86_EN.exe	520 KB
Q305601NT4.EXE	538 KB

Related Resources

Manage Your Profile |Contact Us

© 2009 Microsoft Corporation. All rights reserved. Contact Us |Terms of Use |Trademarks |Privacy Statement