CVE-2008-5100

The strong name SN implementation in Microsoft .NET Framework 2.0.50727 relies on the digital signature Public Key Token embedded in the pathname of a DLL file instead of the digital signature of this file itself, which makes it easier for attackers to bypass Global Assembly Cache GAC and Code...

Masir Camp E-Shop Module <= 3.0 (ordercode) SQL Injection Vuln

No description provided by source. www.BugReport.ir AmnPardaz Security Research Team Title: Masir Camp E-Shop Module = 3.0 SQL Injection Vendor: www.masir.net Vulnerable Version: 3.0 and prior versions Exploit: Available Impact: Medium Fix: N/A Original Advisory: http://bugreport.ir/index52.htm 1...

masir-sql.txt

www.BugReport.ir AmnPardaz Security Research Team Title: Masir Camp E-Shop Module = 3.0 SQL Injection Vendor: www.masir.net Vulnerable Version: 3.0 and prior versions Exploit: Available Impact: Medium Fix: N/A Original Advisory: http://bugreport.ir/index52.htm 1. Description: Masir Camp is an...

Masir Camp E-Shop Module 3.0 - ordercode SQL Injection

Masir Camp E-Shop Module 3.0 - ordercode SQL Injection www.BugReport.ir AmnPardaz Security Research Team Title: Masir Camp E-Shop Module = 3.0 SQL Injection Vendor: www.masir.net Vulnerable Version: 3.0 and prior versions Exploit: Available Impact: Medium Fix: N/A Original Advisory:...

Masir Camp E-Shop Module <= 3.0 (ordercode) SQL Injection Vuln

Exploit for unknown platform in category web applications ============================================================== Masir Camp E-Shop Module = 3.0 ordercode SQL Injection Vuln ============================================================== Title: Masir Camp E-Shop Module = 3.0 SQL Injection...

Masir Camp E-Shop Module 3.0 - &#039;ordercode&#039; SQL Injection

www.BugReport.ir AmnPardaz Security Research Team Title: Masir Camp E-Shop Module = 3.0 SQL Injection Vendor: www.masir.net Vulnerable Version: 3.0 and prior versions Exploit: Available Impact: Medium Fix: N/A Original Advisory: http://bugreport.ir/index52.htm 1. Description: Masir Camp is an...

Cross site scripting

Request Validation aka the ValidateRequest filters in ASP.NET in Microsoft .NET Framework with the MS07-040 update does not properly detect dangerous client input, which allows remote attackers to conduct cross-site scripting XSS attacks, as demonstrated by a query string containing a "/" less-th...

Microsoft .Net framework multiple security vulnerabilities

Buffer overflow on PE .Net format parsing, buffer overflow in KIT compiler, remote information leak in ASP.NET with poisoned NULL byte...

Microsoft .NET JIT Compiler Code Execution Vulnerability (ms07-040)

Microsoft .NET JIT Compiler is prone to a code execution vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

.NET JIT Compiler Vulnerability

The remote host is affected by the vulnerabilitys described in CVE-2007-0043 Checking if System.web.dll version is less than 2.0.50727.832 OpenVAS Vulnerability Test $Id: winCVE-2007-0043.nasl 5661 2017-03-21 11:39:13Z cfi $ Description: .NET JIT Compiler Vulnerability Authors: Carsten Koch-Mauth...

Microsoft .NET Framework JIT编译器远程溢出漏洞（MS07-040）

BUGTRAQ ID: 24811 CVECAN ID: CVE-2007-0043 Microsoft .NET Framework是一个流行的软件开发工具包。 .NET Framework JIT编译器处理包含恶意数据的网页时存在漏洞，远程攻击者可能利用此漏洞控制用户系统。 .NET Framework...

Microsoft .NET Framework Remote Code Execution Vulnerabilities (931212)

Binary data 4120.prm...

Microsoft .NET Framework Remote Code Execution Vulnerabilities (931212)

Binary data 4121.prm...

Microsoft .NET Framework Remote Code Execution Vulnerabilities (931212)

Binary data 4119.prm...

Microsoft .NET Framework Version Detection

Binary data 4128.prm...

Design/Logic Flaw

Interpretation conflict in ASP.NET in Microsoft .NET Framework 1.0, 1.1, and 2.0 for Windows 2000, XP, Server 2003, and Vista allows remote attackers to access configuration files and obtain sensitive information, and possibly bypass security mechanisms that try to constrain the final substring o...

CVE-2007-0041

The PE Loader service in Microsoft .NET Framework 1.0, 1.1, and 2.0 for Windows 2000, XP, Server 2003, and Vista allows remote attackers to execute arbitrary code via unspecified vectors involving an "unchecked buffer" and unvalidated message lengths, probably a buffer overflow...

Buffer overflow

The Just In Time JIT Compiler service in Microsoft .NET Framework 1.0, 1.1, and 2.0 for Windows 2000, XP, Server 2003, and Vista allows user-assisted remote attackers to execute arbitrary code via unspecified vectors involving an "unchecked buffer," probably a buffer overflow, aka ".NET JIT...

Buffer overflow

The PE Loader service in Microsoft .NET Framework 1.0, 1.1, and 2.0 for Windows 2000, XP, Server 2003, and Vista allows remote attackers to execute arbitrary code via unspecified vectors involving an "unchecked buffer" and unvalidated message lengths, probably a buffer overflow...

CVE-2007-0041

CVE-2007-0041 is the PE Loader vulnerability in Microsoft .NET Framework (versions 1.0, 1.1 and 2.0) on Windows 2000/XP/Server 2003/Vista. The root cause is an unchecked buffer/unvalidated message lengths in the PE Loader service, leading to a potential remote code execution (buffer overflow) whe...