The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Microsoft .NET Framework

Microsoft .NET Framework: code execution
An attacker can use a vulnerability of Microsoft .NET Framework, in order to run code...
CERTFR-2017-AVI-296, CVE-2017-8759, VIGILANCE-VUL-23822, VU#101048
Microsoft .NET Framework: vulnerabilities of July 2017
An attacker can use several vulnerabilities of Microsoft .NET Framework...
CERTFR-2017-AVI-210, CVE-2017-8585, VIGILANCE-VUL-23201
Microsoft .NET: privilege escalation via Enhanced Key Usage
An attacker can bypass restrictions via Enhanced Key Usage of Microsoft .NET, in order to escalate his privileges...
CERTFR-2017-AVI-146, CVE-2017-0248, VIGILANCE-VUL-22683
Microsoft .NET: vulnerabilities of April 2017
An attacker can use several vulnerabilities of Microsoft products...
1081, CERTFR-2017-AVI-110, CVE-2017-0160, VIGILANCE-VUL-22416
Microsoft .NET: privilege escalation via Microsoft.IdentityModel.Tokens
An attacker can bypass restrictions via Microsoft.IdentityModel.Tokens of Microsoft .NET, in order to escalate his privileges...
3214296, VIGILANCE-VUL-21544
Microsoft .NET: information disclosure via SQL Server Always Encrypted
An attacker can bypass access restrictions to data via SQL Server Always Encrypted of Microsoft .NET, in order to obtain sensitive information...
3205640, CERTFR-2016-AVI-417, CVE-2016-7270, MS16-155, VIGILANCE-VUL-21378
Windows, .NET, Office, Skype, Lync, Silverlight: seven vulnerabilities via Graphics Component
Several vulnerabilities were announced in Windows, .NET, Office, Skype, Lync and Silverlight...
3192884, 825, 829, 864, 868, CERTFR-2016-AVI-340, CVE-2016-3209, CVE-2016-3262, CVE-2016-3263, CVE-2016-3270, CVE-2016-3393, CVE-2016-3396, CVE-2016-7182, MS16-120, VIGILANCE-VUL-20829
Microsoft .NET: external XML entity injection
An attacker can transmit malicious XML data to Microsoft .NET, in order to read a file, scan sites, or trigger a denial of service...
3170048, CERTFR-2016-AVI-232, CVE-2016-3255, MS16-091, VIGILANCE-VUL-20087
Microsoft .NET: Man-in-the-Middle
An attacker can act as a Man-in-the-Middle on Microsoft .NET, in order to read or write data in the session...
3156757, CERTFR-2016-AVI-165, CVE-2016-0149, MS16-065, VIGILANCE-VUL-19588
Microsoft .NET: code execution via api-ms-win-appmodel-runtime-l1-1-0.dll
A local attacker can force a malicious library load by an application using Microsoft .NET, in order to run code...
3148789, CERTFR-2016-AVI-125, CVE-2016-0148, MS16-041, VIGILANCE-VUL-19356, ZDI-16-234
Our database contains other pages. You can request a free trial to read them.

Display information about Microsoft .NET Framework: