Lucene search
PRIOn knowledge basePRION:CVE-2012-1895HistoryNov 14, 2012 - 12:55 a.m.
Design/Logic Flaw
2012-11-1400:55:00
PRIOn knowledge base
www.prio-n.com
3
The reflection implementation in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5.1, and 4 does not properly enforce object permissions, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (aka XBAP) or (2) a crafted .NET Framework application, aka “Reflection Bypass Vulnerability.”
| CPE | Name | Operator | Version |
|---|---|---|---|
| .net_framework | eq | 1.0 sp3 | |
| .net_framework | eq | 1.1 sp1 | |
| .net_framework | eq | 2.0 sp2 | |
| .net_framework | eq | 3.5.1 | |
| .net_framework | eq | 4.0 |
Related
nvd
nvd
CVE-2012-1895
2012-11-14 00:55:01
cve
cve
CVE-2012-1895
2012-11-14 00:55:01
symantec
symantec
Microsoft .NET Framework CVE-2012-1895 Security Bypass Vulnerability
2012-11-13 00:00:00
cvelist
cvelist
CVE-2012-1895
2012-11-14 00:00:00
nessus
nessus
openvas
openvas
Microsoft .NET Framework Remote Code Execution Vulnerability (2745030)
2012-11-14 00:00:00
Microsoft .NET Framework Remote Code Execution Vulnerability (2745030)
2012-11-14 00:00:00
mskb
mskb
securityvulns
securityvulns
Microsoft Windows security vulnerabilities
2012-11-18 00:00:00