Lucene search
PRIOn knowledge basePRION:CVE-2011-1271HistoryMay 10, 2011 - 7:55 p.m.
Design/Logic Flaw
2011-05-1019:55:00
PRIOn knowledge base
www.prio-n.com
2
The JIT compiler in Microsoft .NET Framework 3.5 Gold and SP1, 3.5.1, and 4.0, when IsJITOptimizerDisabled is false, does not properly handle expressions related to null strings, which allows context-dependent attackers to bypass intended access restrictions, and consequently execute arbitrary code, in opportunistic circumstances by leveraging a crafted application, as demonstrated by (1) a crafted XAML browser application (aka XBAP), (2) a crafted ASP.NET application, or (3) a crafted .NET Framework application, aka “.NET Framework JIT Optimization Vulnerability.”
| CPE | Name | Operator | Version |
|---|---|---|---|
| .net_framework | eq | 4.0 | |
| .net_framework | eq | 3.5.1 | |
| .net_framework | eq | 2.0 sp2 | |
| .net_framework | eq | 3.5 sp1 | |
| .net_framework | eq | 2.0 sp1 | |
| .net_framework | eq | 3.5 |
Related
openvas
openvas
Microsoft .NET Framework Remote Code Execution Vulnerability (2538814)
2011-06-15 00:00:00
Microsoft .NET Framework Security Bypass Vulnerability
2011-05-26 00:00:00
Microsoft .NET Framework Remote Code Execution Vulnerability (2538814)
2011-06-15 00:00:00
nvd
nvd
CVE-2011-1271
2011-05-10 19:55:02
seebug
seebug
Microsoft .NET Framework JIT编译器优化NULL字符串远程代码执行漏洞(MS11-044)
2011-06-17 00:00:00
nessus
nessus
cvelist
cvelist
CVE-2011-1271
2011-05-10 19:00:00
cve
cve
CVE-2011-1271
2011-05-10 19:55:02
securityvulns
securityvulns
Microsoft .Net Framework multiple security vulnerabilities
2011-06-15 00:00:00