Lucene search
K

39 matches found

Cvelist
Cvelist
added 2015/05/13 10:0 a.m.23 views

CVE-2015-1673

The Windows Forms aka WinForms libraries in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2 allow user-assisted remote attackers to execute arbitrary code via a crafted partial-trust application, aka "Windows Forms Elevation of Privilege Vulnerability."...

7.4AI score0.17027EPSS
Exploits0References3
CVE
CVE
added 2015/05/13 10:0 a.m.99 views

CVE-2015-1673

CVE-2015-1673 affects the Windows Forms (WinForms) libraries in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2. It is described as a memory-handling vulnerability in WinForms that, when a crafted partial-trust application is used, allows a user-assisted remote att...

9.3CVSS7.6AI score0.17027EPSS
Exploits0References3Affected Software1
OpenVAS
OpenVAS
added 2015/05/13 12:0 a.m.62 views

Microsoft .NET Framework Privilege Elevation Vulnerability (3057134)

This host is missing an important security update according to Microsoft Bulletin MS15-048. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5AI score0.17501EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/05/12 12:0 a.m.438 views

MS15-048: Vulnerabilities in .NET Framework Could Allow Elevation of Privilege (3057134)

The remote Windows host is running a version of the Microsoft .NET Framework that is affected by multiple vulnerabilities : - A denial of service vulnerability exists in the Microsoft .NET Framework due to a recursion flaw that occurs when decrypting XML data. A remote attacker can exploit this,...

9.3CVSS5.6AI score0.17501EPSS
Exploits0References3
NVD
NVD
added 2013/02/13 12:4 p.m.25 views

CVE-2013-0073

The Windows Forms aka WinForms component in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly restrict the privileges of a callback function during object creation, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application XBAP or 2 ...

10CVSS7.4AI score0.29632EPSS
Exploits0References3
Prion
Prion
added 2013/02/13 12:4 p.m.20 views

Privilege escalation

The Windows Forms aka WinForms component in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly restrict the privileges of a callback function during object creation, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application XBAP or 2 ...

10CVSS8AI score0.29632EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2013/02/13 11:0 a.m.29 views

CVE-2013-0073

The Windows Forms aka WinForms component in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly restrict the privileges of a callback function during object creation, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application XBAP or 2 ...

7.4AI score0.29632EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/02/12 12:0 a.m.52 views

MS13-015: Vulnerability in .NET Framework Could Allow Elevation of Privilege (2800277)

The remote Windows host is running a version of the Microsoft .NET Framework that is affected by a privilege escalation vulnerability due to a flaw in the way .NET elevates the permissions of a callback function when a particular Windows Forms object is created. C Tenable Network Security, Inc...

10CVSS5.5AI score0.29632EPSS
Exploits0References2
NVD
NVD
added 2013/01/09 6:9 p.m.25 views

CVE-2013-0002

Buffer overflow in the Windows Forms aka WinForms component in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, and 4.5 allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application XBAP or 2 a crafted .NET Framework application that leverag...

9.3CVSS7.7AI score0.25118EPSS
Exploits1References4
NVD
NVD
added 2013/01/09 6:9 p.m.26 views

CVE-2013-0001

The Windows Forms aka WinForms component in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 4, and 4.5 does not properly initialize memory arrays, which allows remote attackers to obtain sensitive information via 1 a crafted XAML browser application XBAP or 2 a crafted .NET Framework...

4.3CVSS5.8AI score0.13553EPSS
Exploits1References2
Prion
Prion
added 2013/01/09 6:9 p.m.19 views

Information disclosure

The Windows Forms aka WinForms component in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 4, and 4.5 does not properly initialize memory arrays, which allows remote attackers to obtain sensitive information via 1 a crafted XAML browser application XBAP or 2 a crafted .NET Framework...

4.3CVSS6.3AI score0.13553EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2013/01/09 6:9 p.m.19 views

Buffer overflow

Buffer overflow in the Windows Forms aka WinForms component in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, and 4.5 allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application XBAP or 2 a crafted .NET Framework application that leverag...

9.3CVSS8.3AI score0.25118EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2013/01/09 6:0 p.m.34 views

CVE-2013-0002

Buffer overflow in the Windows Forms aka WinForms component in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, and 4.5 allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application XBAP or 2 a crafted .NET Framework application that leverag...

7.7AI score0.25118EPSS
Exploits1References4
CVE
CVE
added 2013/01/09 6:0 p.m.118 views

CVE-2013-0001

CVE-2013-0001 concerns a vulnerability in the Windows Forms (WinForms) component of Microsoft .NET Framework (1.0 SP3–4.5). The root cause is improper initialization of memory arrays and use of a pointer to unmanaged memory, enabling information disclosure. Exploitation could occur via a crafted ...

4.3CVSS5.8AI score0.13553EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2013/01/09 6:0 p.m.28 views

CVE-2013-0001

The Windows Forms aka WinForms component in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 4, and 4.5 does not properly initialize memory arrays, which allows remote attackers to obtain sensitive information via 1 a crafted XAML browser application XBAP or 2 a crafted .NET Framework...

5.8AI score0.13553EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2013/01/09 12:0 a.m.8 views

PT-2013-2052 · Microsoft · .Net Framework

Name of the Vulnerable Software and Affected Versions: Microsoft .NET Framework versions 1.0 SP3 through 4.5 Description: An information disclosure issue exists due to improper initialization of memory arrays in the Windows Forms component. This allows remote attackers to obtain sensitive...

4.3CVSS5.7AI score0.13553EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2013/01/09 12:0 a.m.7 views

PT-2013-2053 · Microsoft · Windows Forms +1

Name of the Vulnerable Software and Affected Versions: Microsoft .NET Framework versions 1.0 SP3 through 4.5 Description: A buffer overflow issue in the Windows Forms component allows remote attackers to execute arbitrary code via a crafted XAML browser application or a .NET Framework application...

9.3CVSS7.5AI score0.25118EPSS
Exploits1References9
OpenVAS
OpenVAS
added 2013/01/09 12:0 a.m.43 views

Microsoft .NET Framework Privilege Elevation Vulnerability (2769324)

This host is missing an important security update according to Microsoft Bulletin MS13-004. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS8.3AI score0.25118EPSS
Exploits5References19
Tenable Nessus
Tenable Nessus
added 2013/01/09 12:0 a.m.42 views

MS13-004: Vulnerabilities in .NET Framework Could Allow Elevation of Privilege (2769324)

The remote Windows host is running a version of Microsoft .NET Framework that is affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the way the Windows Forms in .NET Framework handle pointers to unmanaged memory locations. CVE-2013-0001 - A buffer overflow...

9.3CVSS8.6AI score0.25118EPSS
Exploits5References8
Rows per page
Query Builder