New Search

.NET Framework Stack Corruption Vulnerability

oval:org.mitre.oval:def:12406

The x86 JIT compiler in Microsoft .NET Framework 2.0 SP2 3.5 SP1 3.5.1 and 4.0 does not properly compile function calls which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (aka XBAP) (2) a crafted ASP.NET application or (3) a crafted .NET Framework application aka ".NET Framework Stack Corruption Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 7
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows Vista
  • Microsoft Windows XP
  • Microsoft Windows Server 2008
  • Microsoft Windows Server 2003
Class:
vulnerability
Reference(s):
  • CVE-2010-3958
Product(s):
  • Microsoft .NET Framework