.net Framework Security Vulnerabilities and Issues — .net Framework CVE List

Lucene search

Microsoft.net Framework

4 matches found

CVE•added 2006/07/11 9:5 p.m.•51 views

CVE-2006-1300

Microsoft .NET framework 2.0 (ASP.NET) in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 up to SP1 allows remote attackers to bypass access restrictions via unspecified "URL paths" that can access Application Folder objects "explicitly by name."

5CVSS6.5AI score0.446EPSS

CVE•added 2006/10/10 9:7 p.m.•48 views

CVE-2006-3436

Cross-site scripting (XSS) vulnerability in Microsoft .NET Framework 2.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving "ASP.NET controls that set the AutoPostBack property to true".

4.3CVSS5.4AI score0.6602EPSS

CVE•added 2006/03/30 1:6 a.m.•39 views

CVE-2006-1511

Buffer overflow in the ILASM assembler in the Microsoft .NET 1.0 and 1.1 Framework might allow user-assisted attackers to execute arbitrary code via a .il file that calls a function with a long name.

5.1CVSS7.7AI score0.28999EPSS

CVE•added 2006/03/30 1:6 a.m.•37 views

CVE-2006-1510

Buffer overflow in calloc.c in the Microsoft Windows XP SP2 ntdll.dll system library, when used by the ILDASM disassembler in the Microsoft .NET 1.0 and 1.1 SDK, might allow user-assisted attackers to execute arbitrary code via a crafted .dll file with a large static method.

4CVSS7.6AI score0.15928EPSS