Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly validate the permissions of objects in memory, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (XBAP) or (2) a crafted .NET Framework application, aka "Double Construction Vulnerability."
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: microsoft
Published: 2013-01-09T18:00:00
Updated: 2024-08-06T14:10:56.664Z
Reserved: 2012-11-27T00:00:00
Link: CVE-2013-0004
Vulnrichment
No data.
NVD
Status : Modified
Published: 2013-01-09T18:09:40.087
Modified: 2024-11-21T01:46:46.113
Link: CVE-2013-0004
Redhat
No data.