|
|||
Rule General Information |
---|
Release Date: | 2013-04-22 | |
Rule Name: | Microsoft .NET Framework Pointer Verification Error Vulnerability (CVE-2009-0090) | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | A Microsoft .NET Framework 1.0 SP3, 1.1 SP1, and 2.0 SP1 does not properly validate .NET verifiable code, which allows remote attackers to obtain unintended access to stack memory, and execute arbitrary code, via (1) a crafted XAML browser application (XBAP), (2) a crafted ASP.NET application, or (3) a crafted .NET Framework application | |
Impact: | Remote code execution | |
Affected OS: | Windows | |
Reference: | CVE-2009-0090 |
|
Solutions |
---|
Update vendor's patch. |