189 matches found
Microsoft .NET Framework WinForms Information Disclosure (CVE-2013-0001)
A remote code execution vulnerability has been reported in the Microsoft .NET Framework. The vulnerability is due to the way WinForms handles pointers to unmanaged memory locations.A remote, unauthenticated attacker can exploit this vulnerability by either enticing a user to visit a maliciously...
Information disclosure
The Windows Forms aka WinForms component in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 4, and 4.5 does not properly initialize memory arrays, which allows remote attackers to obtain sensitive information via 1 a crafted XAML browser application XBAP or 2 a crafted .NET Framework...
CVE-2013-0001
The Windows Forms aka WinForms component in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 4, and 4.5 does not properly initialize memory arrays, which allows remote attackers to obtain sensitive information via 1 a crafted XAML browser application XBAP or 2 a crafted .NET Framework...
CVE-2013-0001
CVE-2013-0001 concerns a vulnerability in the Windows Forms (WinForms) component of Microsoft .NET Framework (1.0 SP3–4.5). The root cause is improper initialization of memory arrays and use of a pointer to unmanaged memory, enabling information disclosure. Exploitation could occur via a crafted ...
Microsoft .NET Framework and Microsoft Silverlight Remote Code Execution Vulnerabilities (2651026)
This host is missing a critical security update according to Microsoft Bulletin MS12-016. OpenVAS Vulnerability Test $Id: secpodms12-016.nasl 8190 2017-12-20 09:44:30Z cfischer $ Microsoft .NET Framework and Microsoft Silverlight Remote Code Execution Vulnerabilities 2651026 Authors: Sooraj KS...
Microsoft.NET and Silevrlight Unmanaged Objects Code Execution (MS12-016; CVE-2012-0014)
A remote code execution vulnerability has been reported in the Microsoft .NET Framework and Silverlight...
MS09-062: Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488)
The remote host is running a version of Windows that is affected by multiple buffer overflow vulnerabilities when viewing TIFF, PNG, BMP, and Office files that could allow an attacker to execute arbitrary code on the remote host. Additionally, there is a GDI+ .NET API vulnerability that allows a...
Managed to inject in-depth study-vulnerability warning-the black bar safety net
This is what I posted in the hacker line of Defense of the 2 0 0 8 year 1 2 on an article, here it is on the network for starters. The attachment is I wrote a tool“the Super SpySuperSpy”, including a window-detection function, and even be able to detect the VC's own SPY++can't detect the window; ...
Trac quickjump Search Script q Parameter Arbitrary Site Redirect
The remote host is running Trac, an enhanced wiki and issue tracking system for software development projects. The version of Trac installed on the remote host fails to sanitize user input to the 'q' parameter of the 'search' script before using it in an unfiltered and unmanaged fashion in a...