Microsoft

.Net Framework

188 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 9%
  • Veröffentlicht 27.05.2010 19:00:01
  • Zuletzt bearbeitet 16.06.2026 23:19:57

The default configuration of ASP.NET in Microsoft .NET before 1.1 has a value of FALSE for the EnableViewStateMac property, which allows remote attackers to conduct cross-site scripting (XSS) attacks via the __VIEWSTATE parameter.

  • EPSS 23.25%
  • Veröffentlicht 14.10.2009 10:30:01
  • Zuletzt bearbeitet 16.06.2026 23:09:35

The Common Language Runtime (CLR) in Microsoft .NET Framework 2.0, 2.0 SP1, 2.0 SP2, 3.5, and 3.5 SP1, and Silverlight 2, does not properly handle interfaces, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser appl...

  • EPSS 23.65%
  • Veröffentlicht 14.10.2009 10:30:01
  • Zuletzt bearbeitet 16.06.2026 23:09:35

Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP...

  • EPSS 26.82%
  • Veröffentlicht 14.10.2009 10:30:01
  • Zuletzt bearbeitet 16.06.2026 23:09:35

Heap-based buffer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 G...

  • EPSS 22.03%
  • Veröffentlicht 14.10.2009 10:30:01
  • Zuletzt bearbeitet 16.06.2026 23:09:35

Buffer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3...

  • EPSS 22.21%
  • Veröffentlicht 14.10.2009 10:30:01
  • Zuletzt bearbeitet 16.06.2026 23:09:35

GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Windows Server 2003 SP2, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold a...

  • EPSS 20.98%
  • Veröffentlicht 14.10.2009 10:30:01
  • Zuletzt bearbeitet 16.06.2026 23:09:35

Multiple integer overflows in unspecified APIs in GDI+ in Microsoft .NET Framework 1.1 SP1, .NET Framework 2.0 SP1 and SP2, Windows XP SP2 and SP3, Windows Server 2003 SP2, Vista Gold and SP1, Server 2008 Gold, Office XP SP3, Office 2003 SP3, 2007 Mi...

  • EPSS 20.45%
  • Veröffentlicht 14.10.2009 10:30:01
  • Zuletzt bearbeitet 16.06.2026 23:09:38

GDI+ in Microsoft Office XP SP3 does not properly handle malformed objects in Office Art Property Tables, which allows remote attackers to execute arbitrary code via a crafted Office document that triggers memory corruption, aka "Memory Corruption Vu...

  • EPSS 23.46%
  • Veröffentlicht 14.10.2009 10:30:01
  • Zuletzt bearbeitet 16.06.2026 23:10:59

Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP...

  • EPSS 20.98%
  • Veröffentlicht 14.10.2009 10:30:00
  • Zuletzt bearbeitet 16.06.2026 23:04:14

Microsoft .NET Framework 1.0 SP3, 1.1 SP1, and 2.0 SP1 does not properly validate .NET verifiable code, which allows remote attackers to obtain unintended access to stack memory, and execute arbitrary code, via (1) a crafted XAML browser application ...