169 matches found
Design/Logic Flaw
The code-optimization feature in the reflection implementation in Microsoft .NET Framework 4 and 4.5 does not properly enforce object permissions, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application aka XBAP or 2 a crafted .NET Framework application, a...
EUVD-2012-4702
The code-optimization feature in the reflection implementation in Microsoft .NET Framework 4 and 4.5 does not properly enforce object permissions, which allows remote attackers to execute arbitrary code via 1 a crafted XAML browser application aka XBAP or 2 a crafted .NET Framework application, a...
Sql injection
Multiple SQL injection vulnerabilities in the Mingle Forum plugin 1.0.32.1 and other versions before 1.0.33 for WordPress might allow remote authenticated users to execute arbitrary SQL commands via the 1 memberid or 2 groupid parameters in a removemember action or 3 id parameter to...
CVE-2012-0164
Microsoft .NET Framework 4 does not properly compare index values, which allows remote attackers to cause a denial of service application hang via crafted requests to a Windows Presentation Foundation WPF application, aka ".NET Framework Index Comparison Vulnerability."...
Microsoft .NET Framework索引比较拒绝服务漏洞(CVE-2012-0164)(MS12-034)
BUGTRAQ ID: 53363 CVE ID: CVE-2012-0164 Microsoft Windows是流行的计算机操作系统。 .NET Framework 比较索引值的方式中存在一个拒绝服务漏洞。成功利用此漏洞的攻击者可能导致使用 WPF API 的应用程序停止响应,直至被手动重新启动。请注意,攻击者无法利用拒绝服务漏洞来以任何方式执行代码或提升其用户权限。 0 Microsoft .NET Framework 4.0 厂商补丁: Microsoft --------- Microsoft已经为此发布了一个安全公告(MS12-034)以及相应补丁:...
CVE-2012-0164
Microsoft .NET Framework 4 does not properly compare index values, which allows remote attackers to cause a denial of service application hang via crafted requests to a Windows Presentation Foundation WPF application, aka ".NET Framework Index Comparison Vulnerability."...
Microsoft .NET Plug-In Exposes Firefox Users to Malware Attacks
Remember that Microsoft .NET Framework Assistant add-on that Microsoft sneaked into Firefox without explicit permission from end users? Well, the code in that add-on has a serious code execution vulnerability that exposes Firefox users to the “browse and you’re owned” attacks that are typically...
February 9, 2021-KB4601052 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1703
February 9, 2021-KB4601052 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1703 Release Date: February 9, 2021 Version: .NET Framework 4.8 Summary Security Improvements This security update addresses a denial of service vulnerability in .NET Framework. For more information please...
June 8, 2021-KB4601554 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10, version 2004, Windows Server, version 2004, Windows 10, version 20H2, Windows Server, version 20H2, and Windows Server 21H1
June 8, 2021-KB4601554 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10, version 2004, Windows Server, version 2004, Windows 10, version 20H2, Windows Server, version 20H2, and Windows Server 21H1 Release Date: June 8, 2021 Version: .NET Framework 3.5 and 4.8 The June 8, 2021 updat...