Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft .net framework 1.0 vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2011-1253
Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5.1, and 4, and Silverlight 4 prior to 4.0.60831, does not properly restrict inheritance, which allows remote malicious users to execute arbitrary code via (1) a crafted XAML browser application (aka XBAP), (2) a crafted ASP.N...
Microsoft .net Framework 1.0
Microsoft .net Framework 1.1
Microsoft .net Framework 2.0
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.0
Microsoft Silverlight 4.0.60531.0
4.3
CVSSv2
CVE-2010-2085
The default configuration of ASP.NET in Microsoft .NET prior to 1.1 has a value of FALSE for the EnableViewStateMac property, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via the __VIEWSTATE parameter.
Microsoft .net Framework 1.0
Microsoft .net Framework
9.3
CVSSv2
CVE-2009-2497
The Common Language Runtime (CLR) in Microsoft .NET Framework 2.0, 2.0 SP1, 2.0 SP2, 3.5, and 3.5 SP1, and Silverlight 2, does not properly handle interfaces, which allows remote malicious users to execute arbitrary code via (1) a crafted XAML browser application (XBAP), (2) a cr...
Microsoft Windows 2000
Microsoft .net Framework 2.0
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 -
Microsoft .net Framework 1.1
Microsoft .net Framework 3.5
Microsoft Windows Vista
Microsoft Windows 7 -
Microsoft .net Framework 1.0
Microsoft Windows Xp
Microsoft Windows Xp -
9.3
CVSSv2
CVE-2009-0091
Microsoft .NET Framework 2.0, 2.0 SP1, and 3.5 does not properly enforce a certain type-equality constraint in .NET verifiable code, which allows remote malicious users to execute arbitrary code via (1) a crafted XAML browser application (XBAP), (2) a crafted ASP.NET application,...
Microsoft Windows 2000
Microsoft .net Framework 1.1
Microsoft .net Framework 2.0
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 -
Microsoft .net Framework 3.5
Microsoft Windows Vista
Microsoft Windows 7 -
Microsoft .net Framework 1.0
Microsoft Windows Xp
Microsoft Windows Xp -
9.3
CVSSv2
CVE-2009-0090
Microsoft .NET Framework 1.0 SP3, 1.1 SP1, and 2.0 SP1 does not properly validate .NET verifiable code, which allows remote malicious users to obtain unintended access to stack memory, and execute arbitrary code, via (1) a crafted XAML browser application (XBAP), (2) a crafted AS...
Microsoft Windows 2000
Microsoft .net Framework 1.1
Microsoft .net Framework 2.0
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 -
Microsoft .net Framework 3.5
Microsoft Windows Vista
Microsoft Windows 7 -
Microsoft .net Framework 1.0
Microsoft Windows Xp
Microsoft Windows Xp -
9.3
CVSSv2
CVE-2009-2504
Multiple integer overflows in unspecified APIs in GDI+ in Microsoft .NET Framework 1.1 SP1, .NET Framework 2.0 SP1 and SP2, Windows XP SP2 and SP3, Windows Server 2003 SP2, Vista Gold and SP1, Server 2008 Gold, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and ...
Microsoft Windows 2003 Server
Microsoft Windows Xp
Microsoft Windows Vista
Microsoft Windows Server 2008
Microsoft .net Framework 1.1
Microsoft .net Framework 2.0
Microsoft Internet Explorer 6
Microsoft Report Viewer 2008
Microsoft Sql Server Reporting Services 2000
Microsoft Sql Server 2005
Microsoft Report Viewer 2005
Microsoft Expression Web
Microsoft Project 2002
Microsoft Office Powerpoint Viewer 2007
Microsoft Office Excel Viewer
Microsoft Office Word Viewer
Microsoft Office Compatibility Pack 2007
Microsoft Office 2007
Microsoft Excel Viewer 2003
Microsoft Expression Web 2
Microsoft Visio 2002
Microsoft Office Powerpoint Viewer
4.3
CVSSv2
CVE-2008-3842
Request Validation (aka the ValidateRequest filters) in ASP.NET in Microsoft .NET Framework without the MS07-040 update does not properly detect dangerous client input, which allows remote malicious users to conduct cross-site scripting (XSS) attacks, as demonstrated by a query s...
Microsoft .net Framework 2.0
Microsoft .net Framework 1.1
Microsoft .net Framework 1.0
4.3
CVSSv2
CVE-2008-3843
Request Validation (aka the ValidateRequest filters) in ASP.NET in Microsoft .NET Framework with the MS07-040 update does not properly detect dangerous client input, which allows remote malicious users to conduct cross-site scripting (XSS) attacks, as demonstrated by a query stri...
Microsoft .net Framework 1.0
Microsoft .net Framework 1.1
Microsoft .net Framework 2.0
9.3
CVSSv2
CVE-2007-0041
The PE Loader service in Microsoft .NET Framework 1.0, 1.1, and 2.0 for Windows 2000, XP, Server 2003, and Vista allows remote malicious users to execute arbitrary code via unspecified vectors involving an "unchecked buffer" and unvalidated message lengths, probably a b...
Microsoft .net Framework 2.0
Microsoft .net Framework 1.0
Microsoft .net Framework 1.1
7.8
CVSSv2
CVE-2007-0042
Interpretation conflict in ASP.NET in Microsoft .NET Framework 1.0, 1.1, and 2.0 for Windows 2000, XP, Server 2003, and Vista allows remote malicious users to access configuration files and obtain sensitive information, and possibly bypass security mechanisms that try to constrai...
Microsoft .net Framework 1.1
Microsoft .net Framework 2.0
Microsoft .net Framework 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »