Microsoft .NET Framework Remote Code Execution Vulnerability (2484015)

This host is missing a critical security update according to Microsoft Bulletin MS11-028. OpenVAS Vulnerability Test $Id: secpodms11-028.nasl 5362 2017-02-20 12:46:39Z cfi $ Microsoft .NET Framework Remote Code Execution Vulnerability 2484015 Authors: Sooraj KS Copyright: Copyright c 2011 SecPod,...

Microsoft .NET Framework x86 JIT compiler Stack Corruption Remote Code Execution Vulnerability

Description The .NET Framework is prone to a remote code-execution vulnerability. Successful exploits may allow an attacker to execute arbitrary code with the privileges of the currently logged-in user. Failed attacks will cause denial-of-service conditions. In a web hosting environment,...

Microsoft .NET Verbose Error Reporting Detection

Binary data 5876.prm...

Microsoft .NET Framework JIT Compiler - Optimization NULL String Remote Code Execution

source: https://www.securityfocus.com/bid/47834/info The Microsoft .NET Framework is prone to a remote code-execution vulnerability that affects the Just-In-Time JIT compiler optimization on x86 architectures. Successful exploits may allow an attacker to execute arbitrary code in the context of t...

Microsoft .NET Framework Detection

Microsoft .NET Framework, a software framework for Microsoft Windows operating systems, is installed on the remote host. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid51351; scriptversion"1.40"; scriptsetattributeattribute:"pluginmodificationdate", value:"2025/10/15...

Microsoft .NET Framework Service Pack Out of Date

The remote system has Microsoft .NET Framework installed. The installed version either has no service pack installed or the installed service pack version is out of date. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid51352; scriptversion"1.10";...

Microsoft Windows ASP.NET Denial of Service Vulnerability(970957)

This host is missing a critical security update according to Microsoft Bulletin MS09-036. OpenVAS Vulnerability Test $Id: gbms09-036.nasl 5368 2017-02-20 14:34:16Z cfi $ Microsoft Windows ASP.NET Denial of Service Vulnerability970957 Authors: Madhuri D Copyright: Copyright c 2010 Greenbone Networ...

MS10-070 ASP.NET Padding Oracle File Download

MS10-070 ASP.NET Padding Oracle信息泄露漏洞 1.漏洞描述。 ASP.NET由于加密填充验证过程中处理错误不当，导致存在一个信息泄漏漏洞。成功利用此漏洞的攻击者可以读取服务器加密的数据，例如视图状态。 此漏洞还可以用于数据篡改，如果成功利用，可用于解密和篡改服务器加密的数据。 虽然攻击者无法利用此漏洞来执行恶意攻击代码或直接提升他们的用户权限，但此漏洞可用于信息搜集，这些信息可用于进一步攻击受影响的系统。 也就是说虽然不能直接getshell，但是理论上可以读取任意文件，包括数据库配置文件。 2.漏洞标识符： CVE： CVE-2010-3332 3.受影响...

Microsoft .NET Framework JIT编译器优化远程代码执行漏洞（MS10-077）

BUGTRAQ ID: 43781 CVE ID: CVE-2010-3228 Microsoft .NET Framework是一个流行的软件开发工具包。 NET Framework中的JIT编译器在优化代码时存在漏洞，当用户访问承载了特制XBAP的网页时就可能触发内存破坏，导致执行任意代码。此漏洞仅影响x64和Itanium架构。 Microsoft .NET Framework 4.0 临时解决方法： 禁用部分受信任的Microsoft .NET应用： caspol –pp off caspol –m –resetlockdown caspol –pp on 在Internet...

CVE-2010-3228

The CVE-2010-3228 issue is a remote code execution vulnerability in the .NET Framework 4.0 JIT compiler on x64/Itanium. The root cause is incorrect optimizations in the JIT that lead to memory corruption when XBAPs or specially crafted Web content are processed. Exploitation requires a user to vi...

Microsoft .Net JIT memory corruption

Memory corruption during SMIL code compilation on 64 bit architecture...

PT-2010-4664 · Microsoft · .Net Framework

Name of the Vulnerable Software and Affected Versions: Microsoft .NET Framework version 4.0 Description: A remote code execution issue exists in the Microsoft .NET Framework, specifically affecting the x64 and Itanium architectures. This is due to improper optimizations by the JIT compiler,...

Microsoft .NET Framework JIT Compiler Optimization Remote Code Execution Vulnerability

Description The Microsoft .NET Framework is prone to a remote code-execution vulnerability. Successful exploits will allow the attacker to execute arbitrary code within the context of the currently logged-in user or the service account associated with an application pool identity. Failed exploit...

CVE-2010-3332

Microsoft .NET Framework 1.1 SP1, 2.0 SP1 and SP2, 3.5, 3.5 SP1, 3.5.1, and 4.0, as used for ASP.NET in Microsoft Internet Information Services IIS, provides detailed error codes during decryption attempts, which allows remote attackers to decrypt and modify encrypted View State aka VIEWSTATE for...

Buffer overflow

Microsoft .NET Framework 1.1 SP1, 2.0 SP1 and SP2, 3.5, 3.5 SP1, 3.5.1, and 4.0, as used for ASP.NET in Microsoft Internet Information Services IIS, provides detailed error codes during decryption attempts, which allows remote attackers to decrypt and modify encrypted View State aka VIEWSTATE for...

CVE-2010-3332

Microsoft .NET Framework 1.1 SP1, 2.0 SP1 and SP2, 3.5, 3.5 SP1, 3.5.1, and 4.0, as used for ASP.NET in Microsoft Internet Information Services IIS, provides detailed error codes during decryption attempts, which allows remote attackers to decrypt and modify encrypted View State aka VIEWSTATE for...

FuseTalk Detection

FuseTalk, a discussion forum software for ColdFusion or Microsoft .NET, is running on remote system. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid48350; scriptversion"1.9"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/06/01";...

CVE-2010-1898

CVE-2010-1898 is a remote code execution vulnerability in the Microsoft .NET CLR handling delegates to virtual methods, affecting CLR-based apps and Silverlight. The issue enables arbitrary code execution via three attack scenarios: XBAPs (XAML browser applications), ASP.NET pages, or standalone ...

Microsoft .NET Common Language Runtime Remote Code Execution Vulnerability (2265906)

This host is missing a critical security update according to Microsoft Bulletin MS10-060. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS10-060: Vulnerabilities in the Microsoft .NET Common Language Runtime and in Microsoft Silverlight Could Allow Remote Code Execution (2265906)

The remote Windows host is running a version of the Microsoft .NET Framework and/or Microsoft Silverlight affected by multiple vulnerabilities : - Silverlight improperly handles pointers in an unspecified manner. A remote attacker could exploit this by tricking a user into viewing a web page with...