CVE-2016-0047

CVE-2016-0047 is a Windows Forms information-disclosure vulnerability in the Microsoft .NET Framework, enabling remote attackers to obtain sensitive data from process memory via specially crafted icon data. Affected are WinForms components in .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4....

CVE-2016-0033

Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 does not prevent recursive compilation of XSLT transforms, which allows remote attackers to cause a denial of service performance degradation via crafted XSLT data, aka ".NET Framework Stack Overflow Denial of Service...

CVE-2016-0047

WinForms in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows remote attackers to obtain sensitive information from process memory via crafted icon data, aka "Windows Forms Information Disclosure Vulnerability."...

Microsoft .NET Framework Denial of Service Vulnerabilities (3137893)

This host is missing an important security update according to Microsoft Bulletin MS16-019. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS16-019: Security update for the .NET Framework to address Denial of Service: February 9, 2016

Resolves a vulnerability in the Microsoft .NET Framework. The vulnerability could allow denial of service if an attacker inserts specially crafted XSLT into a client-side XML web part that causes recursive calls on the server.View products that this article applies to.SummaryThis security update...

Microsoft .NET Framework Denial of Service (MS16-019: CVE-2016-0033)

A Denial of Service vulnerability has been reported in the Microsoft .Net Framework. The vulnerability is due to an error in the way that Microsoft .Net Framework handles XSLT parsing component. A remote attacker could exploit this vulnerability by sending specially crafted data to the target...

Microsoft .NET Framework CVE-2016-0047 Information Disclosure Vulnerability

Description The Microsoft .NET Framework is prone to an information-disclosure vulnerability. Attackers can exploit this issue to gain access to sensitive information that may aid in further attacks. Technologies Affected Microsoft .NET Framework 2.0 SP2 Microsoft .NET Framework 3.5 Microsoft .NE...

Microsoft .NET Framework CVE-2016-0033 Stack Overflow Denial of Service Vulnerability

Description Microsoft .NET Framework is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to degrade the server performance, causing a denial-of-service condition. Given the nature of this issue, attackers may also be able to execute arbitrary code, but this ha...

KLA10753 Multiple vulnerabilities in Microsoft .NET Framework

Multiple serious vulnerabilities have been found in Microsoft .NET Framework. Malicious users can exploit these vulnerabilities to cause denial of service or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper handling of XSLT can be exploited remotely via a...

MS16-019: Security Update for .NET Framework to Address Denial of Service (3137893)

The remote Windows host is missing a security update. It is, therefore, affected by multiple vulnerabilities in the .NET Framework : - A denial of service vulnerability exists due to improper handling of certain Extensible Stylesheet Language Transformations XSLT. A remote attacker can exploit...

Microsoft .NET Framework ASLR Security Bypass (MS15-118: CVE-2015-6115)

A security feature bypass vulnerability exists in Microsoft .NET Framework. The vulnerability is due to a DLL file that was not compiled with Address Space Layout Randomization ASLR enabled. A remote attacker can exploit this vulnerability by enticing a target user to open a crafted document that...

Microsoft .NET Framework Remote Code Execution Vulnerabilities (3104503)

This host is missing a critical security update according to Microsoft Bulletin MS15-128. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft .NET Manifest Resource Information Disclosure Vulnerability

Talos Vulnerability Report TALOS-2015-0129 Microsoft .NET Manifest Resource Information Disclosure Vulnerability December 8, 2015 CVE Number CVE-2015-6114 Summary An exploitable information leak or denial of service vulnerability exists in the manifest resource parsing functionality of the .NET...

MS15-128: Security update for Microsoft graphics component to address remote code execution: December 8, 2015

Resolves vulnerabilities in Microsoft Windows, .NET Framework, Microsoft Office, Skype for Business, Microsoft Lync, and Silverlight. The vulnerabilities could allow remote code execution if a user opens a specially crafted document or visits a webpage that contains specially crafted embedded...

Microsoft Windows Graphics Component CVE-2015-6108 Memory Corruption Vulnerability

Description Microsoft Windows is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed attacks will cause denial-of-service conditions. Technologies Affected Microsoft .NET Framework 3.0 SP2...

KLA10718 Code execution vulnerabilities in Microsoft Graphics Component

Improper fonts handling was found in Microsoft Graphics Component used in Multiple Microsoft products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed content. Original advisories CVE-2015-6108...

Microsoft .NET Manifest Resource Information Disclosure Vulnerability

Talos Vulnerability Report TALOS-2015-0130 Microsoft .NET Manifest Resource Information Disclosure Vulnerability December 8, 2015 CVE Number CVE-2015-6114 Summary An exploitable information leak or denial of service vulnerability exists in the manifest resource parsing functionality of the .NET...

Microsoft .NET Framework跨站脚本漏洞

No description provided by source...

Microsoft .NET Framework Cross-Site Scripting Vulnerability

Microsoft .NET Framework is a popular software development toolkit. A cross-site scripting vulnerability exists in Microsoft .NET Framework versions 4, 4.5, 4.5.1, 4.5.2,4.6, which allows remote attackers to insert arbitrary web scripts or HTML pages via a carefully constructed value...

Microsoft .NET Framework XSS / Privilege Escalation Vulnerability

Exploit for windows platform in category remote exploits Product: =========================== Microsoft .NET Framework Vulnerability Type: ============================ XSS / Elevation of Privilege CVE Reference: ============== CVE-2015-6099 Vulnerability Details: ====================== Microsoft...