microsoft .net framework 1.1 vulnerabilities and exploits

(subscribe to this query)

The PE Loader service in Microsoft .NET Framework 1.0, 1.1, and 2.0 for Windows 2000, XP, Server 2003, and Vista allows remote malicious users to execute arbitrary code via unspecified vectors involving an "unchecked buffer" and unvalidated message lengths, probably a b...

Microsoft .net Framework 1.0 Microsoft .net Framework 1.1 Microsoft .net Framework 2.0

Interpretation conflict in ASP.NET in Microsoft .NET Framework 1.0, 1.1, and 2.0 for Windows 2000, XP, Server 2003, and Vista allows remote malicious users to access configuration files and obtain sensitive information, and possibly bypass security mechanisms that try to constrai...

Microsoft .net Framework 1.0 Microsoft .net Framework 1.1 Microsoft .net Framework 2.0

1 EDB exploit

The Just In Time (JIT) Compiler service in Microsoft .NET Framework 1.0, 1.1, and 2.0 for Windows 2000, XP, Server 2003, and Vista allows user-assisted remote malicious users to execute arbitrary code via unspecified vectors involving an "unchecked buffer," probably a b...

Microsoft .net Framework 1.0 Microsoft .net Framework 1.1 Microsoft .net Framework 2.0

Request Validation (aka the ValidateRequest filters) in ASP.NET in Microsoft .NET Framework without the MS07-040 update does not properly detect dangerous client input, which allows remote malicious users to conduct cross-site scripting (XSS) attacks, as demonstrated by a query s...

Microsoft .net Framework 2.0 Microsoft .net Framework 1.1 Microsoft .net Framework 1.0

Request Validation (aka the ValidateRequest filters) in ASP.NET in Microsoft .NET Framework with the MS07-040 update does not properly detect dangerous client input, which allows remote malicious users to conduct cross-site scripting (XSS) attacks, as demonstrated by a query stri...

Microsoft .net Framework 1.0 Microsoft .net Framework 1.1 Microsoft .net Framework 2.0

Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, and 3.5.1 does not properly implement the ASLR protection mechanism, which allows remote malicious users to obtain sensitive address information via a crafted web site, aka ".NET ASLR Vulnerability."

Microsoft .net Framework 1.1 Microsoft .net Framework 2.0 Microsoft .net Framework 3.0 Microsoft .net Framework 3.5 Microsoft .net Framework 3.5.1

The reflection implementation in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5.1, and 4 does not properly enforce object permissions, which allows remote malicious users to execute arbitrary code via (1) a crafted XAML browser application (aka XBAP) or (2) a crafted .NE...

Microsoft .net Framework 1.0 Microsoft .net Framework 1.1 Microsoft .net Framework 2.0 Microsoft .net Framework 3.5.1 Microsoft .net Framework 4.0

Microsoft .NET Framework 1.1 SP1, 2.0 SP1 and SP2, 3.5, 3.5 SP1, 3.5.1, and 4.0, as used for ASP.NET in Microsoft Internet Information Services (IIS), provides detailed error codes during decryption attempts, which allows remote malicious users to decrypt and modify encrypted Vie...

Microsoft .net Framework 1.1 Microsoft .net Framework 2.0 Microsoft .net Framework 3.5 Microsoft .net Framework 3.5.1 Microsoft .net Framework 4.0

3 EDB exploits1 Github repository

Untrusted search path vulnerability in Entity Framework in ADO.NET in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, and 4 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains ...

Microsoft .net Framework 1.0 Microsoft .net Framework 1.1 Microsoft .net Framework 2.0 Microsoft .net Framework 3.5.1 Microsoft .net Framework 4.0 Microsoft .net Framework 3.5

Buffer overflow in calloc.c in the Microsoft Windows XP SP2 ntdll.dll system library, when used by the ILDASM disassembler in the Microsoft .NET 1.0 and 1.1 SDK, might allow user-assisted malicious users to execute arbitrary code via a crafted .dll file with a large static method...

Microsoft .net Framework 1.0 Microsoft .net Framework 1.1

1 EDB exploit

1 2 3 4 5 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook