3 matches found
Microsoft Security Bulletin MS07-040
Microsoft .NET is affected by multiples criticals vulnerabilities. Two of these vulnerabilities could allow remote code execution on client systems with .NET Framework installed, and one could allow information disclosure on Web servers running ASP.NET. SPDX-FileCopyrightText: 2009 Christian Eric...
CVE-2007-0042
CVE-2007-0042 (Null Byte Termination Vulnerability) affects ASP.NET in the Microsoft .NET Framework 1.0/1.1/2.0 on Windows 2000/XP/Server 2003/Vista. The issue arises from interpretation of NULL bytes (%00) as string terminators in ASP.NET, enabling remote attackers to access configuration files ...
MS07-040: Vulnerabilities in .NET Framework Could Allow Remote Code Execution (931212)
The remote host is running a version of the ASP.NET framework that contains multiple vulnerabilities : - A PE Loader vulnerability could allow an attacker to execute arbitrary code with the privileges of the logged-on user. - An ASP.NET NULL byte termination vulnerability could allow an attacker ...