4 matches found
Microsoft .NET Framework 远程权限提升漏洞(CVE-2013-0004)
Bugtraq ID:57113 CVE ID: CVE-2013-0004 Microsoft .NET Framework是一套由Microsoft分发的帮助开发者构建基于WEB应用的系统 Microsoft .NET Framework里存在的一个两次构建错误会导致不正确验证内存中某些对象的权限,攻击者可以构建特制的XMAL浏览器应用XBAP或不可信的.Net应用,诱使用户解析,可完全控制应用系统,执行任意代码 0 Microsoft .NET Framework 3.5.1 Microsoft .NET Framework 4.0 Microsoft .NET Framework...
Microsoft .NET Framework远程权限提升漏洞(MS13-004)
CVE ID: CVE-2013-0004 Microsoft .NET Framework是一套由Microsoft分发的帮助开发者构建基于WEB应用的系统。 Microsoft .NET Framework里存在的一个两次构建错误会导致不正确验证内存中某些对象的权限,攻击者可以构建特制的XMAL浏览器应用XBAP或不可信的.Net应用,诱使用户解析,可完全控制应用系统,执行任意代码。 0 Microsoft .NET Framework 3.5.1 Microsoft .NET Framework 4.0 Microsoft .NET Framework 3.5 Microsoft...
CVE-2013-0004
CVE-2013-0004 involves elevation of privilege in Microsoft .NET Framework due to a double construction/permission validation flaw. Affected products and versions (per connected sources): Microsoft .NET Framework 1.0 SP3, 1.0 SP2, 1.0 SP1, 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, and 4.5. The vul...
MS13-004: Vulnerabilities in .NET Framework Could Allow Elevation of Privilege (2769324)
The remote Windows host is running a version of Microsoft .NET Framework that is affected by multiple vulnerabilities : - An information disclosure vulnerability exists in the way the Windows Forms in .NET Framework handle pointers to unmanaged memory locations. CVE-2013-0001 - A buffer overflow...