5 matches found
CVE-2013-3860
Microsoft .NET Framework 2.0 SP2, 3.5, 3.5 SP1, 3.5.1, 4, and 4.5 does not properly parse a DTD during XML digital-signature validation, which allows remote attackers to cause a denial of service application crash or hang via a crafted signed XML document, aka "Entity Expansion Vulnerability."...
CVE-2013-3860
CVE-2013-3860 affects Microsoft .NET Framework 2.0 SP2, 3.5, 3.5 SP1, 3.5.1, 4, and 4.5. The issue arises when parsing a DTD during XML digital-signature validation, enabling a remote attacker to cause a denial of service (application crash or hang) via a crafted signed XML document (Entity Expan...
MS13-082: Vulnerabilities in .NET Framework Could Allow Remote Code Execution (2878890)
The version of the .NET Framework installed on the remote host is reportedly affected by the following vulnerabilities : - A vulnerability exists in the way that affected components handle specially crafted OpenType fonts OTF that could lead to remote code execution. An attacker could leverage th...
Microsoft .NET Framework Remote Code Execution Vulnerabilities (2878890)
This host is missing a critical security update according to Microsoft Bulletin MS13-082. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft .NET Framework Entity Expansion Denial of Service (MS13-082; CVE-2013-3860)
A denial of service vulnerability exists in the .NET Framework...