Trucking on with DotDumper

Trucking on with DotDumper By Max Kersten · May 11, 2023 On the 11th of August 2022, the initial public version of DotDumper was released. A brief refresh: DotDumper is an open-source automatic unpacker for DotNet Framework targeting files. This blog marks a public update which supports unmanaged...

Trucking on with DotDumper

Trucking on with DotDumper By Trellix · May 11, 2023 This blog was written by Max Kersten On the 11th of August 2022, the initial public version of DotDumper was released. A brief refresh: DotDumper is an open-source automatic unpacker for DotNet Framework targeting files. This blog marks a publi...

April 25, 2023-KB5025368 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 11, version 21H2

April 25, 2023-KB5025368 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 11, version 21H2 Release Date: April 25, 2023 Version: .NET Framework 3.5, 4.8 and 4.8.1 Summary This article describes the Cumulative Update for 3.5, 4.8 and 4.8.1 for Windows 11, version 21H2...

The vulnerability of the Microsoft .NET Framework software platform, related to improper cleaning or release of resources, allows a perpetrator to cause a service failure.

The vulnerability of the Microsoft .NET Framework software platform is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to cause service failures...

PT-2023-15661 · Mongodb · Mongodb .Net/C# Driver

Name of the Vulnerable Software and Affected Versions: MongoDB .NET/C Driver versions prior to and including v2.18.0 Description: Under very specific circumstances, a privileged user is able to cause arbitrary code to be executed, which may cause further disruption to services. This issue is...

SUSE CVE-2010-3332

Microsoft .NET Framework 1.1 SP1, 2.0 SP1 and SP2, 3.5, 3.5 SP1, 3.5.1, and 4.0, as used for ASP.NET in Microsoft Internet Information Services IIS, provides detailed error codes during decryption attempts, which allows remote attackers to decrypt and modify encrypted View State aka VIEWSTATE for...

SUSE CVE-2011-3415

Open redirect vulnerability in the Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted return URL, aka "Insecure Redirect in...

SUSE CVE-2011-3417

The Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0, when sliding expiry is enabled, does not properly handle cached content, which allows remote attackers to obtain access to arbitrary user accounts via a crafted URL, ak...

CVE-2023-21722

.NET Framework Denial of Service Vulnerability...

January 19, 2023-KB5022476 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 21H2

January 19, 2023-KB5022476 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 21H2 Release Date: January 19, 2023 Version: .NET Framework 3.5, 4.8 and 4.8.1 Note: Revised on Jun 20, 2023 to add known issue. Summary This article describes the Cumulative Update f...

DotDumper - An Automatic Unpacker And Logger For DotNet Framework Targeting Files

An automatic unpacker and logger for DotNet Framework targeting files! This tool has been unveiled at Black Hat USA 2022. The automatic detection and classification of any given file in a reliable manner is often considered the holy grail of malware analysis. The trials and tribulations to get...

CVE-2022-41089

.NET Framework Remote Code Execution Vulnerability...

PT-2022-5878 · Microsoft +1 · Net +3

Name of the Vulnerable Software and Affected Versions: .NET Framework affected versions not specified .NET Core affected versions not specified .NET affected versions not specified Description: The issue is related to insufficient input validation in the .NET Framework, .NET Core, and .NET...

CVE-2022-41064

.NET Framework Information Disclosure Vulnerability...

CVE-2022-41064

.NET Framework Information Disclosure Vulnerability...

ALSA-2022:7826 Moderate: dotnet7.0 security, bug fix, and enhancement update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.100 RC 2 and .NET Runtime 7.0.0 R...

October 25, 2022-KB5018860 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Microsoft server operating system version 21H2

October 25, 2022-KB5018860 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Microsoft server operating system version 21H2 Release Date: October 25, 2022 Version: .NET Framework 3.5, 4.8 and 4.8.1 Summary This article describes the Cumulative Update for 3.5, 4.8 and 4.8.1 for...

October 25, 2022-KB5018858 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 21H2

October 25, 2022-KB5018858 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 21H2 Release Date: October 25, 2022 Version: .NET Framework 3.5, 4.8 and 4.8.1 Summary This article describes the Cumulative Update for 3.5, 4.8 and 4.8.1 for Windows 10 Version 21H2...

October 25, 2022-KB5018856 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10, version 20H2

October 25, 2022-KB5018856 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10, version 20H2 Release Date: October 25, 2022 Version: .NET Framework 3.5, 4.8 and 4.8.1 Summary This article describes the Cumulative Update for 3.5, 4.8 and 4.8.1 for Windows 10, version 20H...

October 25, 2022-KB5018855 Cumulative Update Preview for .NET Framework 3.5 and 4.8 for Microsoft server operating system, version 22H2

October 25, 2022-KB5018855 Cumulative Update Preview for .NET Framework 3.5 and 4.8 for Microsoft server operating system, version 22H2 Release Date: October 25, 2022 Version: .NET Framework 3.5 and 4.8 Summary This article describes the Cumulative Update for 3.5 and 4.8 for Microsoft server...