Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly validate the permissions of objects in memory, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (XBAP) or (2) a crafted .NET Framework application, aka "Double Construction Vulnerability."
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: microsoft
Published: 2013-01-09T18:00:00
Updated: 2018-10-12T19:57:01
Reserved: 2012-11-27T00:00:00
Link: CVE-2013-0004
JSON object: View
NVD Information
Status : Modified
Published: 2013-01-09T18:09:40.087
Modified: 2023-12-07T18:38:56.693
Link: CVE-2013-0004
JSON object: View
Redhat Information
No data.
CWE