Lucene search
PRIOn knowledge basePRION:CVE-2013-0073HistoryFeb 13, 2013 - 12:04 p.m.
Privilege escalation
2013-02-1312:04:00
PRIOn knowledge base
www.prio-n.com
1
The Windows Forms (aka WinForms) component in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly restrict the privileges of a callback function during object creation, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (XBAP) or (2) a crafted .NET Framework application, aka “WinForms Callback Elevation Vulnerability.”
| CPE | Name | Operator | Version |
|---|---|---|---|
| .net_framework | eq | 3.5 | |
| .net_framework | eq | 3.5.1 | |
| .net_framework | eq | 4.0 | |
| .net_framework | eq | 4.5 | |
| .net_framework | eq | 2.0 sp2 |
Related
cve
cve
CVE-2013-0073
2013-02-13 12:04:12
nvd
nvd
CVE-2013-0073
2013-02-13 12:04:12
symantec
symantec
openvas
openvas
Microsoft .NET Framework Privilege Elevation Vulnerability (2800277)
2013-02-13 00:00:00
Microsoft .NET Framework Privilege Elevation Vulnerability (2800277)
2013-02-13 00:00:00
nessus
nessus
mskb
mskb
cvelist
cvelist
CVE-2013-0073
2013-02-13 11:00:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2013-03-02 00:00:00