Orange Business Services
Vigil@nce Vigil@nce Vigil@nce
we track for your security since 1999
 home presentation vulnerabilities documentation contact  
subscriber area subscriber area
free access free access
Vigil@nce team describes computer vulnerabilities impacting your systems, and offers solutions to correct them.
recent vulnerabilities recent vulnerabilities
tracked products tracked products
RSS feed RSS feed
vulnerable product
Vulnerabilities of .NET Framework

.NET Framework vulnerability: Cross Site Scripting via ViewState
When ViewState are not signed by Microsoft ASP.NET, an attacker can generate a Cross Site Scripting.

.NET Framework vulnerability: denial of service of ASP.NET
A remote attacker can send a series of HTTP queries, in order to block the thread manager of IIS 7 used with ASP.NET.

.NET Framework vulnerability: several vulnerabilities of GDI
A local or remote attacker can create malicious programs or images in order to generate a denial of service or code execution on victim's computer.

.NET Framework vulnerability: bypassing signature
The XMLDsig recommendation allows an attacker to bypass the signature of an XML document.

.NET Framework vulnerability: code execution
An attacker can invite the victim to display a malicious web page with an XBAP web browser (such as Internet Explorer), in order to execute code on his computer.

Display other vulnerabilities of .NET Framework described by Vigil@nce...

Display information about .NET Framework:



















France Télécom Copyright 1999-2010 Vigil@nce. Vigil@nce is a service from Orange Business Services. Site map. Legal notice. Version française