Microsoft » .net Framework : Security Vulnerabilities, CVEs, Published In April 2012 (Code Execution)
Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly validate function parameters, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (aka XBAP), (2) a crafted ASP.NET application, or (3) a crafted .NET Framework application, aka ".NET Framework Parameter Validation Vulnerability."
Max CVSS
9.3
EPSS Score
66.09%
Published
2012-04-10
Updated
2018-10-12
1 vulnerabilities found