Microsoft .NET Framework WinForms Information Disclosure Vulnerability

WinForms a.k.a. Microsoft Windows Forms is a smart client component of the .NET Development Framework from the United States Microsoft Microsoft and part of the graphical user interface of the . It provides access to Windows native native components by encapsulating existing Windows APIs Win32 AP...

Information disclosure

WinForms in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows remote attackers to obtain sensitive information from process memory via crafted icon data, aka "Windows Forms Information Disclosure Vulnerability."...

CVE-2016-0047

WinForms in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows remote attackers to obtain sensitive information from process memory via crafted icon data, aka "Windows Forms Information Disclosure Vulnerability."...

CVE-2016-0047

CVE-2016-0047 is a Windows Forms information-disclosure vulnerability in the Microsoft .NET Framework, enabling remote attackers to obtain sensitive data from process memory via specially crafted icon data. Affected are WinForms components in .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4....

Microsoft .NET Framework Denial of Service Vulnerabilities (3137893)

This host is missing an important security update according to Microsoft Bulletin MS16-019. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft .NET WinForms Memory Corruption Arbitrary Code Execution Vulnerability

Microsoft .NET Framework is a system distributed by Microsoft to help developers build WEB-based applications. A security vulnerability in Microsoft .NET Framework WinForms exists due to a failure of the program to properly handle objects in memory, which allows remote attackers to exploit the...

CVE-2015-1673

The Windows Forms aka WinForms libraries in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2 allow user-assisted remote attackers to execute arbitrary code via a crafted partial-trust application, aka "Windows Forms Elevation of Privilege Vulnerability."...

CVE-2015-1673

CVE-2015-1673 affects the Windows Forms (WinForms) libraries in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2. It is described as a memory-handling vulnerability in WinForms that, when a crafted partial-trust application is used, allows a user-assisted remote att...

MS15-048: Vulnerabilities in .NET Framework Could Allow Elevation of Privilege (3057134)

The remote Windows host is running a version of the Microsoft .NET Framework that is affected by multiple vulnerabilities : - A denial of service vulnerability exists in the Microsoft .NET Framework due to a recursion flaw that occurs when decrypting XML data. A remote attacker can exploit this,...

Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the mono-winforms package of the SUSE Linux Enterprise operating system can lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

The vulnerability of the OpenSUSE operating system allows attackers to compromise the confidentiality of protected information.

The vulnerability of the mono-winforms package in the OpenSUSE operating system can lead to a violation of the confidentiality of protected information. This vulnerability can be exploited remotely...

Microsoft .NET Framework WinForms Information Disclosure (CVE-2013-0001)

A remote code execution vulnerability has been reported in the Microsoft .NET Framework. The vulnerability is due to the way WinForms handles pointers to unmanaged memory locations.A remote, unauthenticated attacker can exploit this vulnerability by either enticing a user to visit a maliciously...

CVE-2013-0073

The Windows Forms aka WinForms component in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly restrict the privileges of a callback function during object creation, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application XBAP or 2 ...

CVE-2013-0073

CVE-2013-0073 affects the Windows Forms component of Microsoft .NET Framework (versions 2.0 SP2, 3.5, 3.5.1, 4, 4.5). The root cause is improper restriction of privileges for a callback function during object creation, which can allow remote attackers to execute arbitrary code via a crafted XBAP ...

CVE-2013-0073

The Windows Forms aka WinForms component in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly restrict the privileges of a callback function during object creation, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application XBAP or 2 ...

Microsoft .NET Framework 远程权限提升漏洞(CVE-2013-0002)

Bugtraq ID:57126 CVE ID: CVE-2013-0002 Microsoft .NET Framework是一套由Microsoft分发的帮助开发者构建基于WEB应用的系统。 Microsoft .NET WinForms方法没有正确校验内存中的对象数量，在拷贝这些对象到数组之前缺少正确的边界检查，可触发缓冲区溢出。攻击者可以构建特制的XMAL浏览器应用XBAP或不可信的.Net应用，诱使用户解析，可完全控制应用系统，执行任意代码。 0 Microsoft .NET Framework 3.5.1 Microsoft .NET Framework 4.0...

Buffer overflow

Buffer overflow in the Windows Forms aka WinForms component in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, and 4.5 allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application XBAP or 2 a crafted .NET Framework application that leverag...

CVE-2013-0001

CVE-2013-0001 concerns a vulnerability in the Windows Forms (WinForms) component of Microsoft .NET Framework (1.0 SP3–4.5). The root cause is improper initialization of memory arrays and use of a pointer to unmanaged memory, enabling information disclosure. Exploitation could occur via a crafted ...

CVE-2013-0002

Microsoft .NET Framework WinForms Buffer Overflow (CVE-2013-0002) is triggered by improper counting of objects during a memory copy in Windows Forms, allowing remote code execution via a crafted XBAP or a crafted .NET application. Affected versions span 1.0 SP3 through 4.5. The root cause is a ra...

Microsoft .NET Framework Privilege Elevation Vulnerability (2769324)

This host is missing an important security update according to Microsoft Bulletin MS13-004. OpenVAS Vulnerability Test $Id: secpodms13-004.nasl 5365 2017-02-20 13:46:09Z cfi $ Microsoft .NET Framework Privilege Elevation Vulnerability 2769324 Authors: Antu Sanadi Copyright: Copyright c 2013 SecPo...