Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
.net framework vulnerabilities and exploits
(subscribe to this query)
454
VMScore
CVE-2006-1511
Buffer overflow in the ILASM assembler in the Microsoft .NET 1.0 and 1.1 Framework might allow user-assisted malicious users to execute arbitrary code via a .il file that calls a function with a long name.
Microsoft .net Framework 1.0
Microsoft .net Framework 1.1
383
VMScore
CVE-2014-0295
VsaVb7rt.dll in Microsoft .NET Framework 2.0 SP2 and 3.5.1 does not implement the ASLR protection mechanism, which makes it easier for remote malicious users to execute arbitrary code via a crafted web site, as exploited in the wild in February 2014, aka "VSAVB7RT ASLR Vulne...
Microsoft .net Framework 3.5.1
Microsoft .net Framework 2.0
828
VMScore
CVE-2013-3131
Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5, and Silverlight 5 prior to 5.1.20513.0, does not properly prevent changes to data in multidimensional arrays of structures, which allows remote malicious users to execute arbitrary code via (1) a crafted .NET Framework app...
Microsoft .net Framework 2.0
Microsoft .net Framework 3.5
Microsoft Silverlight 5.0.60818.0
Microsoft Silverlight 5.1.10411.0
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.0
Microsoft Silverlight 5.1.20125.0
Microsoft .net Framework 4.5
Microsoft Silverlight 5.0.60401.0
Microsoft Silverlight 5.0.61118.0
383
VMScore
CVE-2005-0509
Multiple cross-site scripting (XSS) vulnerabilities in the Mono 1.0.5 implementation of ASP.NET (.Net) allow remote malicious users to inject arbitrary HTML or web script via Unicode representations for ASCII fullwidth characters that are converted to normal ASCII characters, inc...
Mono Mono 1.0.5
Microsoft .net Framework 1.1
Microsoft .net Framework 1.0
828
VMScore
CVE-2010-1898
The Common Language Runtime (CLR) in Microsoft .NET Framework 2.0 SP1, 2.0 SP2, 3.5, 3.5 SP1, and 3.5.1, and Microsoft Silverlight 2 and 3 prior to 3.0.50611.0 on Windows and prior to 3.0.41130.0 on Mac OS X, does not properly handle interfaces and delegations to virtual methods,...
Microsoft .net Framework 2.0
Microsoft .net Framework 3.5
Microsoft .net Framework 3.5.1
Microsoft Silverlight
Microsoft Silverlight 3.0.40723.0
Microsoft Silverlight 3.0.40624.00
Microsoft Silverlight 2.0.40115.00
Microsoft Silverlight 2.0.31005.00
Microsoft Silverlight 3.0.40818.0
445
VMScore
CVE-2002-0409
orderdetails.aspx, as made available to Microsoft .NET developers as example code and demonstrated on www.ibuyspystore.com, allows remote malicious users to view the orders of other users by modifying the OrderID parameter.
Microsoft .net Framework 1.0
383
VMScore
CVE-2006-7192
Microsoft ASP .NET Framework 2.0.50727.42 does not properly handle comment (/* */) enclosures, which allows remote malicious users to bypass request filtering and conduct cross-site scripting (XSS) attacks, or cause a denial of service, as demonstrated via an xss:expression STYLE...
Microsoft .net Framework 2.0
828
VMScore
CVE-2012-0162
Microsoft .NET Framework 4 does not properly allocate buffers, which allows remote malicious users to execute arbitrary code via (1) a crafted XAML browser application (aka XBAP) or (2) a crafted .NET Framework application, aka ".NET Framework Buffer Allocation Vulnerability...
Microsoft .net Framework 4.0
445
VMScore
CVE-2012-0164
Microsoft .NET Framework 4 does not properly compare index values, which allows remote malicious users to cause a denial of service (application hang) via crafted requests to a Windows Presentation Foundation (WPF) application, aka ".NET Framework Index Comparison Vulnerabil...
Microsoft .net Framework 4.0
383
VMScore
CVE-2006-3436
Cross-site scripting (XSS) vulnerability in Microsoft .NET Framework 2.0 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors involving "ASP.NET controls that set the AutoPostBack property to true".
Microsoft .net Framework 2.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »