http://www.vnunet.com/News/1129263

"Net compiler flaw leaves users exposed
By John Geralds in Silicon Valley [15-02-2002]
A security flaw in a compiler included in Microsoft's .Net developer tools may leave systems vulnerable to attack.
Researchers at software risk management provider Cigital said that Microsoft's Visual C++.Net and Visual C++ version 7 compiler could lead programmers to write even more programs that are vulnerable to buffer overflow attacks.

Because the protection mechanism itself is susceptible to a buffer overflow attack, developers who make use of the feature may come away with a false sense of security and unintentionally discount critical implementation programs, said Cigital CTO Gary McGraw"


i'm laughing to hard to comment more....