Microsoft

.Net Framework

177 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2015-6115

  • EPSS 17.18%
  • Published 11.11.2015 12:59:47
  • Last modified 12.04.2025 10:46:40

Microsoft .NET Framework 2.0 SP2, 3.5, and 3.5.1 allows remote attackers to bypass the ASLR protection mechanism via a crafted web site, aka ".NET ASLR Bypass."

4.3

CVE-2015-6099

  • EPSS 25.18%
  • Published 11.11.2015 12:59:38
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in ASP.NET in Microsoft .NET Framework 4, 4.5, 4.5.1, 4.5.2, and 4.6 allows remote attackers to inject arbitrary web script or HTML via a crafted value, aka ".NET Elevation of Privilege Vulnerability."

4.3

CVE-2015-6096

  • EPSS 32.95%
  • Published 11.11.2015 12:59:35
  • Last modified 12.04.2025 10:46:40

The XML DTD parser in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, 4.5.2, and 4.6 allows remote attackers to read arbitrary files via an external entity declaration in conjunction with an entity reference, related to an XML External E...

5

CVE-2015-2526

  • EPSS 17.12%
  • Published 09.09.2015 00:59:38
  • Last modified 12.04.2025 10:46:40

Microsoft .NET Framework 4.5, 4.5.1, 4.5.2, and 4.6 allows remote attackers to cause a denial of service to an ASP.NET web site via crafted requests, aka "MVC Denial of Service Vulnerability."

9.3

CVE-2015-2504

  • EPSS 25.8%
  • Published 09.09.2015 00:59:17
  • Last modified 12.04.2025 10:46:40

Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, 4.5.2, and 4.6 improperly counts objects before performing an array copy, which allows remote attackers to (1) execute arbitrary code via a crafted XAML browser application (XBAP) or (2) by...

9.3

CVE-2015-2480

  • EPSS 39.12%
  • Published 15.08.2015 00:59:39
  • Last modified 12.04.2025 10:46:40

The RyuJIT compiler in Microsoft .NET Framework 4.6 produces incorrect code during an attempt at optimization, which allows remote attackers to execute arbitrary code via a crafted .NET application, aka "RyuJIT Optimization Elevation of Privilege Vul...

9.3

CVE-2015-2481

  • EPSS 39.12%
  • Published 15.08.2015 00:59:39
  • Last modified 12.04.2025 10:46:40

The RyuJIT compiler in Microsoft .NET Framework 4.6 produces incorrect code during an attempt at optimization, which allows remote attackers to execute arbitrary code via a crafted .NET application, aka "RyuJIT Optimization Elevation of Privilege Vul...

9.3

CVE-2015-2479

  • EPSS 39.12%
  • Published 15.08.2015 00:59:37
  • Last modified 12.04.2025 10:46:40

The RyuJIT compiler in Microsoft .NET Framework 4.6 produces incorrect code during an attempt at optimization, which allows remote attackers to execute arbitrary code via a crafted .NET application, aka "RyuJIT Optimization Elevation of Privilege Vul...

9.3

CVE-2015-2464

Exploit
  • EPSS 48.1%
  • Published 15.08.2015 00:59:23
  • Last modified 12.04.2025 10:46:40

Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, Office 2007 SP3 and 2010 SP2, Live Meeting 2007 Console, Lync 2010, Lync 2010 Attendee, ...

9.3

CVE-2015-2463

Exploit
  • EPSS 38.62%
  • Published 15.08.2015 00:59:22
  • Last modified 12.04.2025 10:46:40

Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, Office 2007 SP3 and 2010 SP2, Live Meeting 2007 Console, Lync 2010, Lync 2010 Attendee, ...