Microsoft

.Net Framework

188 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 69.8%
  • Veröffentlicht 12.02.2014 04:50:39
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, 4.5, and 4.5.1 does not properly determine whether it is safe to execute a method, which allows remote attackers to execute arbitrary code via (1) a crafted web site or (2) a crafted ...

  • EPSS 50.37%
  • Veröffentlicht 09.10.2013 14:53:24
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT, and .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, and...

  • EPSS 31.65%
  • Veröffentlicht 09.10.2013 14:53:24
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Microsoft .NET Framework 2.0 SP2, 3.5, 3.5 SP1, 3.5.1, 4, and 4.5 does not properly parse a DTD during XML digital-signature validation, which allows remote attackers to cause a denial of service (application crash or hang) via a crafted signed XML d...

  • EPSS 83.02%
  • Veröffentlicht 09.10.2013 14:53:24
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Microsoft .NET Framework 2.0 SP2, 3.5, 3.5 SP1, 3.5.1, 4, and 4.5 allows remote attackers to cause a denial of service (application crash or hang) via crafted character sequences in JSON data, aka "JSON Parsing Vulnerability."

  • EPSS 21.76%
  • Veröffentlicht 10.07.2013 03:46:10
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly check the permissions of objects that use reflection, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (XBA...

  • EPSS 20.6%
  • Veröffentlicht 10.07.2013 03:46:10
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly check the permissions of objects that use reflection, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (XBAP) or (2) a crafte...

  • EPSS 21.04%
  • Veröffentlicht 10.07.2013 03:46:10
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The Common Language Runtime (CLR) in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 on 64-bit platforms does not properly allocate arrays of structures, which allows remote attackers to execute arbitrary code via a crafted .NET Framework ap...

  • EPSS 20.6%
  • Veröffentlicht 10.07.2013 03:46:10
  • Zuletzt bearbeitet 29.04.2026 01:13:23

The serialization functionality in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5 SP1, 3.5.1, 4, and 4.5 does not properly check the permissions of delegate objects, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser a...

  • EPSS 32.38%
  • Veröffentlicht 10.07.2013 03:46:09
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Microsoft .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, and 4.5; Silverlight 5 before 5.1.20513.0; win32k.sys in the kernel-mode drivers, and GDI+, DirectWrite, and Journal, in Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Serv...

  • EPSS 22.01%
  • Veröffentlicht 10.07.2013 03:46:09
  • Zuletzt bearbeitet 29.04.2026 01:13:23

Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5, and Silverlight 5 before 5.1.20513.0, does not properly prevent changes to data in multidimensional arrays of structures, which allows remote attackers to execute arbitrary code via (1) a craf...