CVE-2012-0162Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft NET Framework

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
9.3CRITICALNVD
EPSS
57.6%
top 1.83%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft NET Framework
Timeline
PublishedMay 9
Latest updateMay 4

Description

Microsoft .NET Framework 4 does not properly allocate buffers, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (aka XBAP) or (2) a crafted .NET Framework application, aka ".NET Framework Buffer Allocation Vulnerability."

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-cpjq-xvq6-c68h: Microsoft2022-05-04
CVEList
CVE-2012-0162: Microsoft2012-05-09
CVE-2012-0162 — Microsoft NET Framework vulnerability | cvebase