Microsoft

.Net Framework

177 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2009-2497

  • EPSS 39.63%
  • Published 14.10.2009 10:30:01
  • Last modified 09.04.2025 00:30:58

The Common Language Runtime (CLR) in Microsoft .NET Framework 2.0, 2.0 SP1, 2.0 SP2, 3.5, and 3.5 SP1, and Silverlight 2, does not properly handle interfaces, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser appl...

9.3

CVE-2009-2500

  • EPSS 56.77%
  • Published 14.10.2009 10:30:01
  • Last modified 09.04.2025 00:30:58

Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP...

9.3

CVE-2009-2501

  • EPSS 51.68%
  • Published 14.10.2009 10:30:01
  • Last modified 09.04.2025 00:30:58

Heap-based buffer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 G...

9.3

CVE-2009-2502

  • EPSS 51.58%
  • Published 14.10.2009 10:30:01
  • Last modified 09.04.2025 00:30:58

Buffer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3...

9.3

CVE-2009-2503

  • EPSS 43.91%
  • Published 14.10.2009 10:30:01
  • Last modified 09.04.2025 00:30:58

GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Windows Server 2003 SP2, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold a...

9.3

CVE-2009-2504

  • EPSS 48.8%
  • Published 14.10.2009 10:30:01
  • Last modified 09.04.2025 00:30:58

Multiple integer overflows in unspecified APIs in GDI+ in Microsoft .NET Framework 1.1 SP1, .NET Framework 2.0 SP1 and SP2, Windows XP SP2 and SP3, Windows Server 2003 SP2, Vista Gold and SP1, Server 2008 Gold, Office XP SP3, Office 2003 SP3, 2007 Mi...

9.3

CVE-2009-2528

  • EPSS 41.2%
  • Published 14.10.2009 10:30:01
  • Last modified 09.04.2025 00:30:58

GDI+ in Microsoft Office XP SP3 does not properly handle malformed objects in Office Art Property Tables, which allows remote attackers to execute arbitrary code via a crafted Office document that triggers memory corruption, aka "Memory Corruption Vu...

9.3

CVE-2009-3126

  • EPSS 50.94%
  • Published 14.10.2009 10:30:01
  • Last modified 09.04.2025 00:30:58

Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP...

9.3

CVE-2009-0090

  • EPSS 44.66%
  • Published 14.10.2009 10:30:00
  • Last modified 09.04.2025 00:30:58

Microsoft .NET Framework 1.0 SP3, 1.1 SP1, and 2.0 SP1 does not properly validate .NET verifiable code, which allows remote attackers to obtain unintended access to stack memory, and execute arbitrary code, via (1) a crafted XAML browser application ...

9.3

CVE-2009-0091

  • EPSS 44.52%
  • Published 14.10.2009 10:30:00
  • Last modified 09.04.2025 00:30:58

Microsoft .NET Framework 2.0, 2.0 SP1, and 3.5 does not properly enforce a certain type-equality constraint in .NET verifiable code, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (XBAP), (2) a craf...